[tex-live] Status of restricted \write18 and epstopdf conversion

Alexander Cherepanov cherepan at mccme.ru
Tue Oct 27 02:39:32 CET 2009


Hi Norbert!
On Tue, 27 Oct 2009 02:18:12 +0100, Norbert Preining <preining at logic.at> wrote:

>> Try this:

> Honestly I see that going into a *stupid* direction.
> 
> bash is distributed and still you can do
>       echo > .ssh/authorized_keys
> 
> If you trust an arbitrary tex file you got that is like trusting
> and arbitrary .sh file and running it, so it be.
> 
> We *cannot* expect to close all problematic usage cases where someone
> can shoot himself, and *actually* I don't give a *s**** about it.

Sure, no problem, just write in big letters that processing untrusted 
tex files is as dangerous as running untrusted shell scripts. All 
these openout_any and -shell-restricted create the impression that 
it's safe.

Alexander Cherepanov




More information about the tex-live mailing list