LinuxQuestions.org - Is PATH statement a security consideration?

- Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)

- - Is PATH statement a security consideration? (https://www.linuxquestions.org/questions/linux-security-4/is-path-statement-a-security-consideration-592268/)

ksclps

10-16-2007 10:43 AM

Is PATH statement a security consideration?

By default sbin is not included in the PATH statement. I would like to as necessary perform the ifconfig cmd, but had to edit PATH to allow that. Is adding sbin to the path statement a security concern?

Road	10-16-2007 11:00 AM

No. The path statement does not elevate privileges so you have nothing to worry about.

unSpawn

10-16-2007 12:08 PM

Quote:

Originally Posted by Road (Post 2926265)

No. The path statement does not elevate privileges so you have nothing to worry about.

AFAIK the PATH var *by itself* can't ever elevate rights since it's inert. Some mods of the PATH statement aren't wanted tho from a security POV like ye aulde "dot" trick.

All times are GMT -5. The time now is 07:45 PM.