From owner-cvs-src@FreeBSD.ORG  Sun Dec 31 17:29:33 2006
Return-Path: <owner-cvs-src@FreeBSD.ORG>
X-Original-To: cvs-src@FreeBSD.org
Delivered-To: cvs-src@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 4F5F516A407;
	Sun, 31 Dec 2006 17:29:33 +0000 (UTC)
	(envelope-from mpp@mppsystems.com)
Received: from mail.mppsystems.com (mppsystems.com [208.210.148.205])
	by mx1.freebsd.org (Postfix) with ESMTP id 2225213C458;
	Sun, 31 Dec 2006 17:29:30 +0000 (UTC)
	(envelope-from mpp@mppsystems.com)
Received: by mail.mppsystems.com (Postfix, from userid 1000)
	id D23AE115CF; Sun, 31 Dec 2006 11:04:11 -0600 (CST)
Date: Sun, 31 Dec 2006 11:04:11 -0600
From: Mike Pritchard <mpp@mail.mppsystems.com>
To: Yar Tikhiy <yar@FreeBSD.org>
Message-ID: <20061231170411.GA53408@mail.mppsystems.com>
References: <200612311107.kBVB7TrP042343@repoman.freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <200612311107.kBVB7TrP042343@repoman.freebsd.org>
User-Agent: mutt-ng/devel-r804 (FreeBSD)
Cc: cvs-src@FreeBSD.org, src-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/etc rc.subr
X-BeenThere: cvs-src@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the src tree <cvs-src.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src>
List-Post: <mailto:cvs-src@freebsd.org>
List-Help: <mailto:cvs-src-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src>,
	<mailto:cvs-src-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 31 Dec 2006 17:29:33 -0000

On Sun, Dec 31, 2006 at 11:07:29AM +0000, Yar Tikhiy wrote:
> yar         2006-12-31 11:07:29 UTC
> 
>   FreeBSD src repository
> 
>   Modified files:
>     etc                  rc.subr 
>   Log:
>   Allow for /usr/bin/env when parsing the shebang line from an
>   interpreted $command.  Some "portable" sofware packages use such a
>   line to skip the task of figuring out the absolute pathname of the
>   interpreter at install time, e.g.:
>   
>           #!/usr/bin/env python
>   
>   It is insecure, but a popular book on Python seems to have advised
>   it to a wide audience.  Hence a number of such scripts in the ports,
>   mostly written in Python.

If its insecure, than why allow it?  If the ports need a patch to make it
secure, then they should be patched.  

I don't like seeing something from rc.subr with a comment about it
being less secure....
-- 
Mike Pritchard
mpp@FreeBSD.org or mpp@mppsystems.com
"If tyranny and oppression come to this land, it will be in the guise
of fighting a foreign enemy."  - James Madison (1787)