Dangerous $PATH

Question

Dangerous $PATH

Lekensteyn opened this issue 13 years ago · 3 comments

Your path is currently set to something like .:~/bin:/bin/usr/bin:$PATH. Some notes on it:

When running a program, the program will be searched from left to right
Including relative directories (and especially the current directory) is insecure. Assume someone sends you a tarball which you extract, cd into and then run ls while the tarball has a ls file too
It would make more sense to use ~/bin:/usr/local/{s,}bin:/usr/{s,}bin:/{s,}bin:$PATH (apply expansion before setting it) according to man hier

Answer 1 · 2011-09-09T19:34:13.000Z

Good point! I only don't understand one thing: "apply expansion before setting it" -- what should I do exactly before setting my PATH to the above? If it's about ~ I'd rather have it like this as I'm using this .bash_profile both for root and local user.

Answer 2 · 2011-09-09T20:09:49.000Z

Well, I was too lazy to write out /{s,}bin to /sbin:/bin, that's what I meant by expanding.

Answer 3 · 2011-09-10T07:06:50.000Z

Ah! Applying :)