From owner-freebsd-questions  Wed Sep 18 04:13:23 1996
Return-Path: owner-questions
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id EAA08360
          for questions-outgoing; Wed, 18 Sep 1996 04:13:23 -0700 (PDT)
Received: from ime.net (ime.net [204.97.248.4])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id EAA08327
          for <questions@freebsd.org>; Wed, 18 Sep 1996 04:13:18 -0700 (PDT)
Received: from kimiko.cguy.com (buxton-7.ime.net [206.231.148.136]) by ime.net (8.7.4/8.6.12) with SMTP id HAA21195; Wed, 18 Sep 1996 07:12:54 -0400 (EDT)
Message-ID: <323FD92A.267@ime.net>
Date: Wed, 18 Sep 1996 07:12:42 -0400
From: Gary Chrysler <tcg@ime.net>
Reply-To: tcg@ime.net
Organization: The Computer Guy
X-Mailer: Mozilla 3.0b6 (Win95; I)
MIME-Version: 1.0
To: moos@degnet.baynet.de
CC: FreeBSD-questions <questions@freebsd.org>
Subject: Re: Quick Question
References: <323F22DE.6E24@ricochet.net> <323F4A17.EB9@ime.net> <323FC77F.CFC@degnet.baynet.de>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

Darius Moos wrote:
> 
> Please explain to me why this is a security-risk. I've always had
> "." in my PATH.
> 
> Darius Moos.
> 
> Gary Chrysler wrote:
> > gordon rios wrote:
> > > Hello:
> > > Sometimes in a directory I created from my home directory I get the error
> > > Thanks,
> > > Gordon P. Rios
> > I've seen several replys about adding '.' (dot) to the PATH
> > statement, IMHO this really is not a good habbit to get into
> > especially for the 'root' user! Doing so is a potential
> > security risk!
> >
> > I suggest just typing ./hello
> >
> > -Enjoy
> > Gary
> > ~~~~~~~~~~~~~~~~
> > Improve America's Knowledge... Share yours
> > The Borg... Where minds meet
> > (207) 929-3848
> 
> --
> 
> email: moos@degnet.baynet.de

If your in a users directory and they have a executable called 'ls'
in there that gets your root password, writes it to a file then
deletes itself and calls the real 'ls'..
Now that user has your root password!

If you look back in the archives you will find a lengthly
discussion on this matter!

Several reasons were given!

-Enjoy
Gary
~~~~~~~~~~~~~~~~
Improve America's Knowledge... Share yours
The Borg... Where minds meet
(207) 929-3848