John Hasler wrote: > A writes: > > If they've installed a binary there that has the same name as a > > system-wide binary, its a good bet that they intend to run the local one, > > otheriwse, why put it there? Hence it makes sense to put ~/bin on the > > front of $PATH. > > See my other reponse to this thread. ~/bin at the front of $PATH is a > security risk. It should not be put there by default. Users can put it > there themselves. If they don't know how they probably don't know enough > to evaluate the risks.
I have yet to see any credible explanation of why it's more of a security risk than eg, having ~/.profile sourced by the shell on startup. -- see shy jo
signature.asc
Description: Digital signature
