bug-bash
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Potential Bash Script Vulnerability


From: Robert Elz
Subject: Re: Potential Bash Script Vulnerability
Date: Mon, 08 Apr 2024 09:58:20 +0700

    Date:        Mon, 8 Apr 2024 02:50:29 +0100
    From:        Kerin Millar <kfm@plushkava.net>
    Message-ID:  <20240408025029.e7585f2f52fe510d2a686e52@plushkava.net>

  | which is to read scripts in their entirety before trying to execute
  | the resulting program. To go about it that way is not typical of sh
  | implementations, for whatever reason.

Shells interpret their input in much the same way, regardless of
from where it comes.   Would you really want your login shell to
just collect commands that you type (possibly objecting to those
with syntax errors) but executing none of them (including "exit")
until you log out (send EOF) ?

kre





reply via email to

[Prev in Thread] Current Thread [Next in Thread]