> you forgot https_proxy and no_proxy... > > however, im against this change since it allows a user to redirect a program > they need privileges to use to an arbitrary proxy they specify, something > there is no good mitigation against.
Indeed. That's right, isn't it Todd? The whole idea here was to not permit what you are trying to do.
