[Freeipa-devel] [freeipa PR#204][comment] ipautil.run: Remove hardcoded environ PATH value
rcritten
freeipa-github-notification at redhat.com
Tue Nov 1 17:15:57 UTC 2016
URL: https://github.com/freeipa/freeipa/pull/204
Title: #204: ipautil.run: Remove hardcoded environ PATH value
rcritten commented:
"""
NACK. I'd be fine with changing the PATH to remove cruft but the primary purpose is to prevent an attacker from providing their own PATH with unknown executables. For those few places where one must control PATH then env can be (and is) passed in.
No ticket?
"""
See the full comment at https://github.com/freeipa/freeipa/pull/204#issuecomment-257628641
More information about the Freeipa-devel
mailing list