[tex-live] Security issues for restricted shell escape

Karl Berry karl at freefriends.org
Fri Jul 17 23:40:25 CEST 2009

Previous message: [tex-live] Security issues for restricted shell escape
Next message: [tex-live] Security issues for restricted shell escape
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Setting "p" isn't much better than "1". 

It at least eliminates the most obvious issues, ie,
\write18{rm -rf /}

    The security holes are huge. 

I can't disagree, and I knew that (and pointed it out) when I
implemented it.  It is a tradeoff.

    * Version 1.17 closes some security holes in pdfcrop

Thanks for your efforts.

Previous message: [tex-live] Security issues for restricted shell escape
Next message: [tex-live] Security issues for restricted shell escape
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the tex-live mailing list