[LRUG] "What would Jason Bourne do?" follow-up
Mark Burns
markthedeveloper at gmail.com
Mon Feb 11 17:06:24 PST 2013
Excellent approach Gerhard, to do the right thing and own up to mistakes
and set a good example.
Particularly so, in light of the recent spate of security issues.
On 12 February 2013 00:25, Gerhard Lazu <gerhard at lazu.co.uk> wrote:
> After some consideration, I came to the conclusion that my *$PATH* tip
> was a very bad idea. Just to be clear, that was meant for development only,
> I would never consider doing it in production. A hearty pub chat with Paul
> Battley and Ben Griffiths prompted me to think about this some more.
>
> In conclusion, do not be lazy - as I seem to be - and type the whole *
> ./bin/setup* or *./script/boot*, don't go for relative *$PATH* scoping.
> As Paul initially pointed in the questions, it represents a security risk -
> yes, even for your development environment.
>
> Thank you both for pointing out my mistake, and thank you all for being a
> great audience, Gerhard.
>
> ------------------------------
> Twitter <http://twitter.com/#!/gerhardlazu> Github<https://github.com/gerhard>
> Blog <http://gerhardlazu.com/>
>
> _______________________________________________
> Chat mailing list
> Chat at lists.lrug.org
> http://lists.lrug.org/listinfo.cgi/chat-lrug.org
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lrug.org/pipermail/chat-lrug.org/attachments/20130212/74e9b82a/attachment-0003.html>
More information about the Chat
mailing list