[bug #65609] [wishlist] give find a "secure" or "safe" option

bug-findutils

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug #65609] [wishlist] give find a "secure" or "safe" option

From:	James Youngman
Subject:	[bug #65609] [wishlist] give find a "secure" or "safe" option
Date:	Thu, 18 Apr 2024 13:27:17 -0400 (EDT)

Follow-up Comment #1, bug #65609 (group findutils):

This is a valid though somewhat niche requirement.  

I think honestly the best way to implement it is to remove from the table of
actions in (from memory) pred.c any that you don't want, and build a modified
find binary.

That way you know for sure that an attacker can't find a way to confuse the
regular find binary into reversing the effect of a -s option, and mistakes in
the sudo configuration can't accidentally drop the -s.


    _______________________________________________________

Reply to this item at:

  <https://savannah.gnu.org/bugs/?65609>

_______________________________________________
Message sent via Savannah
https://savannah.gnu.org/

[Prev in Thread]

Current Thread

[Next in Thread]

[bug #65609] [wishlist] give find a "secure" or "safe" option, anonymous, 2024/04/18
- [bug #65609] [wishlist] give find a "secure" or "safe" option, James Youngman <=
- [bug #65609] [wishlist] give find a "secure" or "safe" option, Tavian Barnes, 2024/04/21

Prev by Date: [bug #65609] [wishlist] give find a "secure" or "safe" option
Next by Date: [PATCH 0/2] gnulib related patches
Previous by thread: [bug #65609] [wishlist] give find a "secure" or "safe" option
Next by thread: [bug #65609] [wishlist] give find a "secure" or "safe" option
Index(es):
- Date
- Thread