bug-bash
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Restricted Bash - Not so restrictive (in 4.2 as well)


From: Pierre Gaston
Subject: Re: Restricted Bash - Not so restrictive (in 4.2 as well)
Date: Thu, 12 Jan 2012 12:59:54 +0200

On Thu, Jan 12, 2012 at 12:51 PM, Sarnath K - ERS, HCLTech
<k_sarnath@hcl.com> wrote:
> Oops.. It actually works! That's a great catch!
>
> I thought "redirection" is not supported in restricted mode though..!
> I just checked... It is mostly related to "output" re-direction.
>
> Hmm......I think I am going to tinker "bash" source code to disable the 
> "echo" builtin. :-)
>
> Any ideas?
>
I don 't think it's a good idea, there are many many many tricks like
this ( printf, read, mapfile....), or for instance just run:
"$(<file)"
and you will get the file as an error message.

As hinted at the beginning securing a shell like you want should
probably be discussed elsewhere, maybe on a debian list.



reply via email to

[Prev in Thread] Current Thread [Next in Thread]