Following a tutorial from one of the articles on this site, I wrote the ubiquitous "Hello world" routine:
and...
groovey, nothing happened, that's a good sign! So I check the directory:
Time to test it:
Now, I've done this (with older libraries, like iostream.h) with Borlands Turbo C++ 1.1 compiler under DOS and the .exe ran OK. So what am I missing here?

I'm running the Gnu C++ compiler that came with SuSE 9.2 Professional.

./hello should run your app.

For security reasons, the current directory (.) is not usually included in your path. Running it like reddazz suggested should work. If you'd rather just add . to your path then you can add this to your ~/.profile file: PATH=$PATH:.

Hey itsme86

wat r the security reasons for including current dir in the

PATH environment variable ?

./ worked a treat!
cheers chaps.

Say I make a shell script named 'ls'.....

the contents of this script are as follows:

Now, if I get access to your system and shove this little gem somewhere on your filesystem (maybe ~/) ...you don't recognize the directory I created to stick it in so you decide to investigate...first thing you do is "cd ~/dir" ...then hrmm ..."ls" to see the contents of said directory ....now, instead of executing /bin/ls you've executed ./ls and have managed to wipe your filesystem.....It gets much more complex, but this is a rather simple demonstration of a potential "breach"

My root user(s) don't have a path set at all ...every command is preceeded by the full path...

This problem can largely be mitigated by placing '.' at the END of the PATH variable, rather than the beginning. Thefore, /bin/ls will be found before ./ls.

I personally find the convenience of a (properly set) PATH outweighs the security offered by having none. Too hard to remember what commands are in /bin, /usr/bin, /usr/sbin, and /sbin.

hi

I don't think it is a potential breach

If u r ultimate goal is to damage the filesystem and

as u have got access to my file system u can delete all

the root contents.why making a script and ....


The existence of a security breach has been told in Advanced

Programming by Richard Stevens .but he hasn't discussed it there

Say you give me an ordinary user account on your system. I could create a malicious script in my home directory without needing superuser access to the filesystem. Now say I call or email you or whatever and ask you to check on some suspicious behavior in my home directory. You might change to my home directory and unwillingly run my script by typing 'ls'.

You don't need to have already breached some form of security to get the script on the filesystem. You just need to be able to trick the administrator into running it.

It might not even be something as obvious as deleting all your files. It might just install some trojan and then call the real ls so you don't even know it happened. That means you've just given me superuser access to your entire system. Do you see how it can be dangerous now?

Hey, it's your system ...thats why this is all so great. You're perfectly free to do with it as you wish, The chances of someone pulling this off on a single user system are slim, (though not impossible by any stretch of the imagination) ....On a multi-user machine the chances for shenanigans increase exponentially, unfortunatly we all don't have single user systems and must think about such things

Thanx people.I got it

Would it also explain why when I tried, some time back, to install a package/application manually, when I typed:
I got
?

So, it should have been:
?

After having ran ./configure, you typically can then just run make without any further arguments.

Maybe what you're looking for is:

I am assuming that 'whatever' is the name of your makefile.