andrew@garfield.UUCP (Andrew Draskoy) (05/28/85)
It seems that some people have set up hack with hack.sh being a set-uid shell script which changes to HACKDIR and then runs the real hack. This is a very bad idea. Set-uid shell scripts are very insecure, as has been noted before in other newsgroups. Send me mail from a "root" login if you want more info. Andrew -- Andrew Draskoy UUCP: {akgua,allegra,cbosgd,ihnp4,mcvax,utcsri}!garfield!andrew CDNNET: andrew@garfield.mun.cdn -- The opinions expressed above may not represent those of the author after he has had some sleep.