steven mestdagh wrote:
>On Mon, Nov 28, 2005 at 10:21:58AM +0100, frantisek holop wrote:
>
>
>>hmm, on Sun, Nov 27, 2005 at 04:31:31PM +0100, Said Outgajjouft said that
>>
>>
>>>Line 92
>>>@pwd_mkdb = ("pwd_mkdb", "-p"); # program for building passwd database
>>>and line 133
>>>@pwd_mkdb = ("pwd_mkdb", "-p", "-d", ".");
>>>
>>>Isn't it more secure to use absolute path for running the pwd_mkdb?
>>>
>>>
>> @path = ('/bin', '/usr/bin', '/usr/local/bin');
>>
>>
>
>that's the path where it looks for shells. a bit further you can see
>
>$ENV{'PATH'} = "/sbin:/bin:/usr/sbin:/usr/bin";
>
>and that is where pwd_mkdb will be found.
>
>Disclaimer: http://www.kuleuven.be/cwis/email_disclaimer.htm
>
>
>
>
Hmm that doesn't answer my question.
The answer I am looking for could be one of the following.
1. The PATH environment is local to the process and cannot be tampered with.
2. The PATH environment is global but if someone can tampered with it
you are screwed
anyway so it doesn't matter that the pwd_mkdb is called using a
relative path.
3. The PATH environment however very slim can be tempered with so
adduser instead calls
/evilfiles/pwd_mkdb then adding an absolute path sounds like
something that should be done.
OpenBSD keep it real by keeping it free!
Said Outgajjouft
