svn rev #19534: trunk/src/windows/build/
Jeffrey Altman
jaltman at secure-endpoints.com
Thu Apr 26 20:25:39 EDT 2007
Danilo Almeida wrote:
> <quote>
> Using path can be unreliable and a security hole.
> So silly people have "." in their path and that is a bad idea.
> Having a tool depend on path means you have to trust the users environment.
> </quote>
>
> This is a build tool, not some setuid program...
>
> - Danilo
And we are relying on the PATH to find the compiler, the preprocessor,
nmake, gawk, perl, hhc, etc.
The reason that a specific path is being specified is because of name
space collisions. The Windows "find" and the UNIX "find" commands
behave very differently and you need to make sure that you use the UNIX
variant for the script to work properly.
I do agree that there are better ways to find it. As Ken Raeburn
suggested last week a better approach would be to figure out where
"bash" is and then look for "find" in that location.
Jeffrey Altman
Secure Endpoints Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3355 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mailman.mit.edu/pipermail/krbdev/attachments/20070426/7ccda559/attachment.bin
More information about the krbdev
mailing list