|October 9th, 2008|
|fix_path, programming, shell [html]|
Then I have to change my bashrc a little bit from before:
And now it's all spiffy fast.
UPDATE 2009-07-20: The line above actually has an
untrusted code excecution vulnerability. If the user can be
tricked into navigating to a directory with something like
`foo` in the name, then the
foo program will be excecuted. This is quite bad. The
problem is that the shell evaluates the
before display. So we need to change that line to:
And we postpone evaluation to when the prompt is displayed, instead of evaluating it both when PS1 is set and then again when it is displayed.
Comment via: facebook