how to execute an excutable file
Michael Velez
mikev777 at hotmail.com
Tue Feb 27 10:42:45 UTC 2007
> -----Original Message-----
> From: redhat-install-list-bounces at redhat.com
> [mailto:redhat-install-list-bounces at redhat.com] On Behalf Of narendra
> Sent: Tuesday, February 27, 2007 5:12 AM
> To: Getting started with Red Hat Linux
> Subject: RE: how to execute an excutable file
>
> Hi,
> why shouldn't current working directory be in the PATH??
>
> Narendra
>
This is more important for the 'root' user as opposed to regular users but I
guess one could advise it for all users.
It's to avoid a security risk called a Trojan Horse. A Trojan Horse is an
executable that has the same name as a standard Linux/Unix system command
but does something completely different.
Say you're in the 'tmp' directory (or any publicly accessible directory) and
an unknown user has created a program called 'ifconfig' in that directory.
You, as root, would like to execute the 'ifconfig' command while in the tmp
directory. If '.' is in the path before /sbin is, you will inadvertently
execute the 'ifconfig' command in the tmp directory. That ifconfig command,
run as the root user, can do anything it wants, even give root permissions
to any other user.
That is why the 'root' user should only have well-defined system directories
in its path, and definitely not directories that are publicly-accessible.
Since '.' can point to anything, it should never be in the path.
Variants of this idea can also apply to all users.
Michael
More information about the Redhat-install-list
mailing list