Newsportal USENET - Re: Default PATH setting - reduce to something more sensible?

Re: Default PATH setting - reduce to something more sensible?

Sujet : Re: Default PATH setting - reduce to something more sensible?
De : 643-408-1753 (at) *nospam* kylheku.com (Kaz Kylheku)
Groupes : comp.unix.shell
Date : 26. Jan 2025, 18:51:18

Autres entêtes

Organisation : A noiseless patient Spider
Message-ID : <20250126093809.38@kylheku.com>
References : 1 2 3 4 5 6 7 8 9 10 11
User-Agent : slrn/pre1.0.4-9 (Linux)

On 2025-01-26, Janis Papanagnou <janis_papanagnou+ng@hotmail.com> wrote:

To my best knowledge using '/' as part of a file or directory name is
(as the '\0') prohibited by the operating system at a very low level.
So there would, IMO, not be a security hole (i.e. not because of that).

The / is not part of a name; it is acting as the path component
separator. PATH allows relative paths with multiple components.
This is real!

$ PATH='~/bin':$PATH
$ cat '~/bin/cat' # script I prepared
#!/bin/sh
echo BOO!
$ cat # Bash in stock mode finds /bin/cat
^C
!130!
$ bash --posix # Bash in --posix mode falls victim
bash-4.4$ cat
BOO!
bash-4.4$

Someone who has literal ~/bin in their PATH so that their shell finds
utilities in their personal bin is about just as susceptible to an
attack as someone who has . in their PATH.

They might be even more susceptible. Here is why. Someone who has
~/bin in their PATH probably has a personal bin containing
custom programs with names distinct from standard utilities.
I have such things myself, such as "tagify".

The attack can be perpetrated using the name "tagify" regardless
of where the user has placed '~/bin' into PATH: first or last,
because that name is not found in any of the other locations
listed in PATH.

If we happen to have access to the user's ~/bin directory, we can set a
trap for each of the custom program names we find there.

Whereas the . exploit typically requires . to be ahead of
the standrad locations rather than as a fallback, and the trap is set
using some common utilities (ones not built into the user's shell).

--
TXR Programming Language: http://nongnu.org/txr
Cygnal: Cygwin Native Application Library: http://kylheku.com/cygnal
Mastodon: @Kazinator@mstdn.ca

Les messages affichés proviennent d'usenet.

Date	Sujet	#	Auteur
14 Jan 25	Re: Default PATH setting - reduce to something more sensible?	84	Dan Cross
14 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Richard Harnden
20 Jan 25	Re: Default PATH setting - reduce to something more sensible?	82	Wayne
20 Jan 25	Re: Default PATH setting - reduce to something more sensible?	81	Janis Papanagnou
21 Jan 25	Re: Default PATH setting - reduce to something more sensible?	80	Axel Reichert
21 Jan 25	Re: Default PATH setting - reduce to something more sensible?	7	Janis Papanagnou
22 Jan 25	Soft-links to binaries (was Re: Default PATH setting)	4	Janis Papanagnou
22 Jan 25	Re: Soft-links to binaries (was Re: Default PATH setting)	3	Keith Thompson
22 Jan 25	Re: Soft-links to binaries (was Re: Default PATH setting)	1	Lawrence D'Oliveiro
23 Jan 25	Re: Soft-links to binaries (was Re: Default PATH setting)	1	Janis Papanagnou
25 Jan 25	PATH for GUI applications (was: Default PATH setting - reduce to something more sensible?)	2	Axel Reichert
26 Jan 25	Re: PATH for GUI applications (was: Default PATH setting - reduce to something more sensible?)	1	Lawrence D'Oliveiro
22 Jan 25	Re: Default PATH setting - reduce to something more sensible?	72	Geoff Clare
22 Jan 25	Re: Default PATH setting - reduce to something more sensible?	71	Kaz Kylheku
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	70	Geoff Clare
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	69	Kenny McCormack
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	52	Dan Cross
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	51	Janis Papanagnou
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	3	Keith Thompson
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Janis Papanagnou
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Keith Thompson
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	3	Kaz Kylheku
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Janis Papanagnou
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Jerry Peters
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	marrgol
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	43	Dan Cross
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	42	Janis Papanagnou
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	14	Dan Cross
25 Jan 25	Re: Default PATH setting - reduce to something more sensible?	5	Janis Papanagnou
25 Jan 25	Re: Default PATH setting - reduce to something more sensible?	4	Dan Cross
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Keith Thompson
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Dan Cross
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Janis Papanagnou
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	8	Keith Thompson
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	3	Janis Papanagnou
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Christian Weisgerber
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Janis Papanagnou
26 Jan 25	Early history of Bash (was: Re: Default PATH setting - reduce to something more sensible?)	4	Christian Weisgerber
27 Jan 25	Re: Early history of Bash	1	Keith Thompson
27 Jan 25	Re: Early history of Bash	2	Keith Thompson
27 Jan 25	Re: Early history of Bash	1	Lawrence D'Oliveiro
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	27	Keith Thompson
25 Jan 25	Re: Default PATH setting - reduce to something more sensible?	26	Janis Papanagnou
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	25	Keith Thompson
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	23	Kaz Kylheku
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	22	Janis Papanagnou
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Kaz Kylheku
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Janis Papanagnou
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	3	Keith Thompson
3 Feb 25	Re: Default PATH setting - reduce to something more sensible?	2	Keith Thompson
3 Feb 25	Re: Default PATH setting - reduce to something more sensible?	1	Kaz Kylheku
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	16	Lawrence D'Oliveiro
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Kenny McCormack
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	11	Alexis
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Kenny McCormack
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Alexis
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	8	Lawrence D'Oliveiro
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	7	Keith Thompson
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	3	Kaz Kylheku
27 Jan 25	Arbitrary characters in filenames (was Re: Default PATH setting ...)	2	Janis Papanagnou
27 Jan 25	Re: Arbitrary characters in filenames (was Re: Default PATH setting ...)	1	Kaz Kylheku
28 Jan 25	Re: Default PATH setting - reduce to something more sensible?	3	Lawrence D'Oliveiro
28 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Keith Thompson
28 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Kenny McCormack
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Janis Papanagnou
28 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Lawrence D'Oliveiro
27 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Kaz Kylheku
26 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Janis Papanagnou
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	14	Kaz Kylheku
23 Jan 25	Re: Default PATH setting - reduce to something more sensible?	13	Keith Thompson
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	5	Keith Thompson
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	4	Kaz Kylheku
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	3	Keith Thompson
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Lawrence D'Oliveiro
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Keith Thompson
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	7	Janis Papanagnou
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	6	Dan Cross
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	5	Janis Papanagnou
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Dan Cross
25 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Janis Papanagnou
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Keith Thompson
25 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Janis Papanagnou
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	2	Geoff Clare
24 Jan 25	Re: Default PATH setting - reduce to something more sensible?	1	Kenny McCormack