Mysterious security hole
Scott McMahan
mcmahan at cs.unca.edu
Sun Jun 23 08:06:35 AEST 1991
In article <1991Jun21.203054.989 at serval.net.wsu.edu> yeidel at tomar.accs.wsu.edu (Joshua Yeidel) writes:
>>The example of having something in / is bad for obvious reasons. But
>>what about /tmp? A script named say "la" (common type of "ls") which
>>does a chmod 777 /, sends mail to the person and then echos
>>"la: Command not found" would do the job nicely.
>
>Is /tmp in your path? Why?
I wondered that myself.
More information about the Comp.unix.admin
mailing list