barnett@vdsvax.steinmetz.ge.com (Bruce G. Barnett) (10/14/88)
This reminds me of a nit I have about the Unixes we have. The default path provided by login includes '.' first. Advantages: Naive users get the proper behavior when running programs like 'test' Disadvantages: By default, the user is given a path 'wide open' to Trojan horses. IMHO I think the default nature should be more 'secure', with the current working directory last in the search path. Yes, we could patch every /bin/login, but that is not the point. Do people think the vendors should change this? -- Bruce Barnett