aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorhttps://www.google.com/accounts/o8/id?id=AItOawngqGADV9fidHK5qabIzKN0bx1ZIfvaTqs <Glenn@web>2010-09-12 22:50:33 +0000
committerJoey Hess <joey@kitenet.net>2010-09-12 22:50:33 +0000
commitf6127eb9fa53d375f6ad3d079c75a279c268e9cd (patch)
treea0c31e512d0679270b0918c9f1cc9dfa8c117233
parent827bd1d99027b845cb2fbc9f87200b5316f449c6 (diff)
downloadikiwiki-f6127eb9fa53d375f6ad3d079c75a279c268e9cd.tar
ikiwiki-f6127eb9fa53d375f6ad3d079c75a279c268e9cd.tar.gz
Add comment about this issue
-rw-r--r--doc/bugs/ikiwiki_ignores_PATH_environment.mdwn2
1 files changed, 1 insertions, 1 deletions
diff --git a/doc/bugs/ikiwiki_ignores_PATH_environment.mdwn b/doc/bugs/ikiwiki_ignores_PATH_environment.mdwn
index 992ea0a2a..1cf99d826 100644
--- a/doc/bugs/ikiwiki_ignores_PATH_environment.mdwn
+++ b/doc/bugs/ikiwiki_ignores_PATH_environment.mdwn
@@ -17,4 +17,4 @@ This makes it a little hard to specify which specific binaries should be used, e
> checking happy, but as taint checking is disabled anyway, I have removed
> that. [[done]] --[[Joey]]
-Question: Do ikiwiki.cgi and the RCS post-commit script sanitize the $PATH separately from bin/ikiwiki? If not, then bin/ikiwiki is probably right to sanitize the $PATH; otherwise you've created a security hole with access to the account that ikiwiki is SUID to. It'd be nice if /opt/local/bin were earlier in the $PATH, but that can be changed (as noted) in the setup file. [[Glenn|geychaner@mac.com]]
+Question: Do ikiwiki.cgi and the RCS post-commit script sanitize the $PATH separately from bin/ikiwiki? If not, then bin/ikiwiki is probably right to sanitize the $PATH; otherwise you've created a security hole with access to the account that ikiwiki is SUID to. It'd be nice if /opt/local/bin were earlier in the $PATH, but that can be changed (as noted) in the setup file. [[Glenn|geychaner@mac.com]] (Also the person who started this by filing an issue with MacPorts; I'm experimenting with ikiwiki for collaborative documentation.)