Subject: Re: pkg_add and single quote in filenames
To: Roland Illig <rillig@NetBSD.org>
From: =?ISO-8859-15?Q?Joachim_K=F6nig?= <firstname.lastname@example.org>
Date: 08/24/2007 09:34:23
Roland Illig wrote:
> Probably the original authors of that piece of software didn't trust
> themselves enough to properly quote all filenames when they are passed
> to the shell, so they restricted them.
> This check may be removed in the future, after we have thoroughly
> checked that the pkg_* tools don't create shell commands with unquoted
A warnx() instead of errx() would then at least let me install the
binary package and
still let package developers notice that the filename "might be bogus".