> Anyone know a way to do this? As has been pointed out, any plan that makes it impossible for a smart user to execute arbitrary programs from within mutt would also cripple mutt.
Usually the right way to handle a situation like you describe is with the chroot command. It's a bit of a bother, since you have to create the "jail" directory and you have to make a copy (or hard link) of libc and various other important stuff. But once you set that all up, it's (supposed to be) impossible to break out of the jail and into the rest of the file system. There should be some tools and more specific instructions out there on the web someplace. Even with your pine solution, i'm willing to bet there are tricks to get a shell -- for example, i remember a config option to get a subshell by pressing Ctrl-Z, and various ways to specify external programs, which can be arbitrary commands. So i'd strongly recommend chroot. -- Mike Schiraldi VeriSign Applied Research
msg25306/pgp00000.pgp
Description: PGP signature
