Mercurial > pkg
view previous-work/more_control_helpers/lib/chown @ 20:c75924bd38e3
fix security hole relating to path for package user.
author | Robert McIntyre <rlm@mit.edu> |
---|---|
date | Thu, 10 Jan 2013 04:25:17 +0000 |
parents | d6bef198ae71 |
children |
line wrap: on
line source
1 #!/bin/bash2 # Copyright (c) 2000,2004 Matthias S. Benkmann <article AT winterdrache DOT de>3 # You may do everything with this code except misrepresent its origin.4 # PROVIDED `AS IS' WITH ABSOLUTELY NO WARRANTY OF ANY KIND!6 DAISY_CHAIN=""8 for p in $(type -ap chown) ; do9 if [ ! $p -ef $0 ]; then DAISY_CHAIN=$p ; break ; fi10 done12 if [ ! -n "$DAISY_CHAIN" ]; then13 echo Cannot find real ${0##*/} command14 exit 115 fi17 if [ $UID == 0 ]; then18 exec $DAISY_CHAIN "$@"19 fi21 # Package users can't chown anything at all, so22 # having the script test for specific parameters23 # is pointless.24 #if [ "$1" == "root.root" ]; then25 echo 1>&2 '***' chown "$@"26 #else27 # $DAISY_CHAIN "$@" || exit $?28 #fi30 exit 0