From owner-freebsd-security  Mon Jan 17 12:38:18 2000
Delivered-To: freebsd-security@freebsd.org
Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2])
	by hub.freebsd.org (Postfix) with ESMTP id 66A3B14DFE
	for <freebsd-security@freebsd.org>; Mon, 17 Jan 2000 12:38:15 -0800 (PST)
	(envelope-from jwyatt@rwsystems.net)
Received: from bsdie.rwsystems.net([209.197.223.2]) (999 bytes) by bsdie.rwsystems.net
	via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp
	(sender: <jwyatt@rwsystems.net>) 
	id <m12AImt-000CCPC@bsdie.rwsystems.net>
	for <freebsd-security@freebsd.org>; Mon, 17 Jan 2000 14:30:07 -0600 (CST)
	(Smail-3.2.0.106 1999-Mar-31 #1 built 1999-Aug-7)
Date: Mon, 17 Jan 2000 14:29:57 -0600 (CST)
From: James Wyatt <jwyatt@rwsystems.net>
To: Jonathan Fortin <jonf@revelex.com>
Cc: freebsd-security@freebsd.org
Subject: Re: sh?
In-Reply-To: <Pine.BSO.4.21.0001161858240.11142-100000@revelex.com>
Message-ID: <Pine.BSF.4.10.10001171426110.95375-100000@bsdie.rwsystems.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

On Sun, 16 Jan 2000, Jonathan Fortin wrote:
> q most ppl use zsh/bash/csh. 

If you are referring to the patch offered to log PID of the parent process
posted here, and pointing-out that most users don't use 'sh':

Most hacks use 'sh' to do their work because it is *very* simple, uniform,
installed everywhere, and small/quick. 'sh' gets ignored by many admins as
'just more system stuff' and not scrutinized very frequently. - Jy@



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message