Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 23 Oct 2007 03:04:37 +0100
From:      "Benjamin M. A'Lee" <bma+lists@subvert.org.uk>
To:        freebsd-questions@freebsd.org
Subject:   Re: defend from -> :() { :&:; } ;:
Message-ID:  <20071023020437.GB9711@gilmour.subvert.org.uk>
In-Reply-To: <20071022212542.GA7058@thought.org>
References:  <123275.56819.qm@web30812.mail.mud.yahoo.com> <20071022164418.GA864@glitch.rwxrwxrwx.net> <20071022212542.GA7058@thought.org>
next in thread | previous in thread | raw e-mail | index | archive | help 

--xXmbgvnjoT4axfJE
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mon, Oct 22, 2007 at 02:25:42PM -0700, Gary Kline wrote:
> On Mon, Oct 22, 2007 at 06:44:18PM +0200, Martin Tournoij wrote:
> > On Sun 21 Oct 2007 12:10, Danielisz Laszlo wrote:
> > > Please do not try to execute this: :() { :&:; } ;: on your BSD machin=
e.
> > > I ask all who already tried it how to defend from this?
> >=20
> > Wow,, my machine just crashed :-/
> > Does in this work on other OS's as well (ie. GNU/Linux)? Or just
> > (Free?)BSD? I really don't feel like crashing another machine right
> > now...
> >=20
> > Only works in sh, not in csh.
> >=20
> > Anyway, this seems to be security/stability issue, maybe a PR is in
> > order?
> >=20
> > Regards,
> > Martin Tournoij
>=20
>=20
> 	If this *is* only a /bin/sh bug, then it maybe time to issue a=20
> 	PR.  Remember that *our* "Bourne" shell is really "a shell" or=20
> 	ash.  I remember hacking on this and playing with it back in tha
> 	late 80's.
>=20
> 	It might be time to use zsh as the FBSD /bin/sh =20

Why bother? It's not a bug, exactly, so much as a nasty trick of
the sh syntax. It works just as well in zsh.

--=20
Benjamin A'Lee <bma@subvert.org.uk>
http://subvert.org.uk/~bma/
"He who breaks a thing to find out how it works has left the path of
wisdom." - J.R.R. Tolkien

--xXmbgvnjoT4axfJE
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (FreeBSD)

iD8DBQFHHVa0EUZDNrttL6ARAn3HAKCKiirqeKgZorFA2IanRWbvhcpMigCfT4/R
M5n6F+EWCybu3wjWogY/AE8=
=/wEO
-----END PGP SIGNATURE-----

--xXmbgvnjoT4axfJE--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071023020437.GB9711>