Subject: Re: bin/2905: setting environment vars from login
To: None <email@example.com>
From: Michael Graff <firstname.lastname@example.org>
Date: 10/30/1996 00:21:14
"Perry E. Metzger" <email@example.com> writes:
> This makes me nervous. System V suffers from many security holes made
> possible by this facility. I'm not personally sure that I would want
> to see it done unless it was very carefully studied.
I wouldn't mind having a situation like this, though...
login: explorer -ppp
Starting PPP session...
The stuff AFTER the user id is put into LOGIN_ARGS, and that is the ONLY
variable that can be munged at login.
That's safe enough I think, and would allow a limited form of what the
user is asking for.
I, too, saw this pr and got rather worried.