From owner-freebsd-stable Tue Jul 2 3:18:52 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BB9B437B400; Tue, 2 Jul 2002 03:18:47 -0700 (PDT) Received: from viefep12-int.chello.at (viefep12-int.chello.at [213.46.255.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1C1B243E13; Tue, 2 Jul 2002 03:18:46 -0700 (PDT) (envelope-from ant@overclockers.at) Received: from Deadcell.ant ([212.17.108.240]) by viefep12-int.chello.at (InterMail vM.5.01.03.06 201-253-122-118-106-20010523) with ESMTP id <20020702101845.TDYP1248.viefep12-int.chello.at@Deadcell.ant>; Tue, 2 Jul 2002 12:18:45 +0200 Received: from Deadcell.ant (localhost [127.0.0.1]) by Deadcell.ant (8.12.4/8.12.3) with ESMTP id g62AIiLu044658; Tue, 2 Jul 2002 12:18:44 +0200 (CEST) (envelope-from ant@Deadcell.ant) Received: (from ant@localhost) by Deadcell.ant (8.12.4/8.12.4/Submit) id g62AIcjV044657; Tue, 2 Jul 2002 12:18:38 +0200 (CEST) Date: Tue, 2 Jul 2002 12:18:38 +0200 From: Andreas Ntaflos To: Matthew Dillon Cc: freebsd-questions@freebsd.org, freebsd-stable@freebsd.org Subject: Re: freetype2?? again! Message-ID: <20020702121838.A44601@Deadcell.ant> References: <20020702004118.A1105@Deadcell.ant> <20020701191014.E134-100000@gravy.kishka.net> <20020702062113.B1105@Deadcell.ant> <200207020449.g624nFDN044861@apollo.backplane.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <200207020449.g624nFDN044861@apollo.backplane.com>; from dillon@apollo.backplane.com on Mon, Jul 01, 2002 at 09:49:15PM -0700 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Mon, Jul 01, 2002 at 09:49:15PM -0700, Matthew Dillon wrote: > Just as a side note, here, you should never put "." in root's path for > security reasons. If you do you may accidently run a tojan that > happens to be in the current directory and named after a common > command like 'ls' (for example if you are examining a user's directory > as root or you are cd'd into /var/tmp). It may be convenient, but it > is far better to get used to typing './BLAH' for things you want to run > from the current directory then to make it automatic and potentially > blow the machine's security. This is true; I did it out of convenience, not worrying about it, since I don't run things as root very often. But I'll put "." out of my path. This also happened to be one of my first "hacks" in a Unix-like OS, years ago now, and I was very proud of figureing out how to avoid that `./blah` thing :) Anyhow, thanks. regards -- Andreas "ant" Ntaflos ant@overclockers.at Vienna, AUSTRIA To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message