CVSROOT:        /cvs
Module name:    src
Changes by:     schwa...@cvs.openbsd.org        2014/06/26 10:00:16

Modified files:
        libexec/security: security 

Log message:
Do not redirect STDERR of the main security(8) script to /dev/null,
not even for calling three particular functions, as that carries a risk
of hiding serious errors in the security(8) script itself: otto@ found
and reported a bug (already fixed by now) where that hurt him.

Instead, only do the redirection where it is really needed, that is,
inside the forked csh(1) child process.  The csh(1) "eval" builtin is
required because the csh(1) "source" builtin apparently ignores
redirections.

No objections came up when showing this diff on tech@.

Reply via email to