Configuration Information [Automatically generated, do not change]:
Machine: x86_64
OS: linux-gnu
Compiler: gcc
Compilation CFLAGS: -DPROGRAM='bash' -DCONF_HOSTTYPE='x86_64'
-DCONF_OSTYPE='linux-gnu' -DCONF_MACHTYPE='x86_64-pc-linux-gnu'
-DCONF_VENDOR='pc' -DLOCALEDIR='/usr/share/locale' -DPACKA
I'm writing a script with a command line interpreter and I can most things
working (eg. history etc.) except for one thing. The filename completion
works well for some of the commands, but I'd like to use other completion
options for others. Works well from the "real" command line, but I can't
ge
Configuration Information [Automatically generated, do not change]:
Machine: sparc
OS: solaris2.9
Compiler: /sapmnt/global/tools/compiler/SS11/SUNWspro/bin/cc
Compilation CFLAGS: -DPROGRAM='bash' -DCONF_HOSTTYPE='sparc'
-DCONF_OSTYPE='solaris2.9' -DCONF_MACHTYPE='sparc-sun-solaris2.9'
-DCONF_VEN
Marc Herbert wrote:
> Sorry I did not know about this race condition. This is more or less
> the type of problems I had in mind:
>
> http://hea-www.harvard.edu/~fine/Tech/cgi-safe.html
In addition to the fine recommendations from the others I wanted to
specifically point out that the problems on
On Fri, Dec 17, 2010 at 12:47:49PM -0600, Illia Bobyr wrote:
> I worked on a pretty huge project written 99% in TCL. TCL looks is very
> much like Bash, except that, I would say, it is cleaner in the quoting area.
The substantial difference is that bash does word splitting and globbing
on the re
> Le 15/12/2010 18:08, Illia Bobyr a écrit :
>> On 12/15/2010 4:17 AM, Marc Herbert wrote:
>>> [...]
>>> I use and abuse the shell but I do not consider it as a "real"
>>> programming language is because it was not really designed as one from
>>> day one. It rather grew from the command line interf
On 12/17/2010 7:37 AM, Greg Wooledge wrote:
> [...]
> The single biggest problem demonstrated by that page is the tendency
> of people to invoke a shell from some other language to do something
> for them. The example they use (from perl) is:
>
>open ("/bin/ls /data/cardfiles | grep $searchspe
On Fri, Dec 17, 2010 at 09:47:00AM +, Marc Herbert wrote:
> This is more or less
> the type of problems I had in mind:
>
> http://hea-www.harvard.edu/~fine/Tech/cgi-safe.html
Wow, there is some atrocious code on that page (being shown as "what not
to do"). I have no doubt that code just lik
Le 15/12/2010 18:08, Illia Bobyr a écrit :
> On 12/15/2010 4:17 AM, Marc Herbert wrote:
>> [...]
>> I use and abuse the shell but I do not consider it as a "real"
>> programming language is because it was not really designed as one from
>> day one. It rather grew from the command line interface as
Le 16/12/2010 17:03, Bob Proulx a écrit :
> I didn't say anything about quoting. The topic here was security
> vulnerabilities of an suid script. For example the classic race
> condition between stat'ing the #! interpreter and launching the
> privileged process on the file. If the system has tha
10 matches
Mail list logo
