> i am an engineer. i use make. i can't type. alice the hacker puts > 'mkae' in a directory. i am fucked. > > it's a bad idea. you can't guard against it completely.
One of the most far-fetched scenarios I've heard in a while, but sure, I can conceive of it. Am I going to live my life trying to guard against every single problem I can conceive of? No. You can't guard against everything. You weigh the benefits of having "." in your path (ease of typing) versus the possible dangers you're exposed to and the likelihood of those dangers occurring (*if* you make exactly the typing error that a malicious hacker has counted on you to make in *exactly* the directory he knew you would make it in, you're fucked), and you see where you fall on the cost-benefit analysis. Open and shut case either way? Not to me. I suppose I just don't have Brandon's incisive brilliance, though, that can not only make such a judgment for himself but also make it once and for all for every other person and situation imaginable. And to do it so quickly! It must be a heavy burden, always knowing what is right for everyone else, even though you have only incomplete knowledge of their needs, requirements and resources. E _______________________________________________ Bits mailing list [EMAIL PROTECTED] http://www.sugoi.org/mailman/listinfo/bits
