Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#85 improve passmass safety with full path to su

open
nobody
None
5
2011-09-06
2011-09-06
No

I'd like to propose you small fix of passmass example script. When invoked with "-su" argument, "su" binary is called. It will be safer to call that binary with full path "/bin/su", to prevent e.g. stealing password with Trojan horse "su" etc.

The patch is attached.

Discussion