On 2010-08-13 08:16:48 +0200, Alexander Skwar wrote: > 2010/8/13 Vincent Lefevre <vincent-...@vinc17.net> > > > > On 2010-08-12 17:16:37 +0200, Stefan Sperling wrote: > > > > ~/bin/mysvn: > > > #!/bin/sh > > > env LC_CTYPE="en_US.<preferred charset>" svn update > > > > Wrong, wrong, wrong! Security hole! > > No, not wrong, but totally correct - especially, if you need to parse the > output in some script, you (kinda) MUST set the locale to some value, > that you know. Leaving it in a undefined state is no good at all.
No it is wrong because the above script may send non-printable characters to the terminal, such as control sequences. Such control sequences can wreck the terminal and depending on its configuration, send the contents to a printer. -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <http://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <http://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / Arénaire project (LIP, ENS-Lyon)
