bug-bash
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Potential Bash Script Vulnerability


From: John Passaro
Subject: Re: Potential Bash Script Vulnerability
Date: Mon, 8 Apr 2024 00:29:41 -0400

if you wanted this for your script - read all then start semantics, as
opposed to read-as-you-execute - would it work to rewrite yourself inside a
function?

function main() { ... } ; main

On Sun, Apr 7, 2024, 22:58 Robert Elz <kre@munnari.oz.au> wrote:

>     Date:        Mon, 8 Apr 2024 02:50:29 +0100
>     From:        Kerin Millar <kfm@plushkava.net>
>     Message-ID:  <20240408025029.e7585f2f52fe510d2a686e52@plushkava.net>
>
>   | which is to read scripts in their entirety before trying to execute
>   | the resulting program. To go about it that way is not typical of sh
>   | implementations, for whatever reason.
>
> Shells interpret their input in much the same way, regardless of
> from where it comes.   Would you really want your login shell to
> just collect commands that you type (possibly objecting to those
> with syntax errors) but executing none of them (including "exit")
> until you log out (send EOF) ?
>
> kre
>
>
>
>


reply via email to

[Prev in Thread] Current Thread [Next in Thread]