This is the mail archive of the gdb-patches@sources.redhat.com mailing list for the GDB project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: RFC: Check permissions of .gdbinit files


Bob Rossi wrote:


What if we had GDB prompt the user to determine if they wanted to read the .gdbinit file in? Then we could add another configuration variable to GDB that allowed it to always read in the files. That way, by default GDB would be more safe, but for the rest of us, it would work the way it always has.

I like this idea, or some variation. A developer working in a
less-secure environment can set the variable (env var?) to ask
first before doing, while in an environment like Apple where you
have a thousand engineers sharing files in all kinds of weird ways,
you can set it to "if an intruder gets this far in, .gdbinit is the
least of our worries."

Stan


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]