added SECURE_PATH

author Todd C. Miller <Todd.Miller@courtesan.com>

Thu, 10 Feb 1994 19:30:00 +0000 (19:30 +0000)

committer Todd C. Miller <Todd.Miller@courtesan.com>

Thu, 10 Feb 1994 19:30:00 +0000 (19:30 +0000)
author Todd C. Miller <Todd.Miller@courtesan.com>
Thu, 10 Feb 1994 19:30:00 +0000 (19:30 +0000)
committer Todd C. Miller <Todd.Miller@courtesan.com>
Thu, 10 Feb 1994 19:30:00 +0000 (19:30 +0000)
diff --git a/sudo.c b/sudo.c

index ff727cc24a14b4f73a3d301c9c881a0dd464dad0..8232986ef3c9a3546965f44ae883b0d3ac074b55 100644 (file)
--- a/sudo.c
+++ b/sudo.c
@@ -288,16 +288,21 @@ void clean_envp(envp)
       */
      for (tenvp = Envp; *envp; envp++)
  #ifdef hpux
-       if (strncmp("LD_", *envp, 3) && strncmp("SHLIB_PATH", *envp, 10))
+       if (strncmp("LD_", *envp, 3) && strncmp("SHLIB_PATH", *envp, 10)) {
  #else
  #ifdef __alpha
-       if (strncmp("LD_", *envp, 3) && strncmp("_RLD_", *envp, 5))
+       if (strncmp("LD_", *envp, 3) && strncmp("_RLD_", *envp, 5)) {
  #else
-       if (strncmp("LD_", *envp, 3))
+       if (strncmp("LD_", *envp, 3)) {
  #endif /* __alpha */
  #endif /* hpux */
-           *tenvp++ = *envp;
-
+#ifdef SECURE_PATH
+           if (!strncmp("PATH=", *envp, 5))
+               *tenvp++ = "PATH=" SECURE_PATH;
+           else
+#endif /* SECURE_PATH */
+               *tenvp++ = *envp;
+       }
      *tenvp = NULL;
  }
  
diff --git a/sudo.h b/sudo.h

index e90a80ff28a02ba746428e67feb6454bb0a4c842..a38f2056e6a6a1e7b4d5bfa1ba95b68abfaaa498 100644 (file)
--- a/sudo.h
+++ b/sudo.h
@@ -166,6 +166,8 @@
  
  #define MAXCOMMANDLENGTH         MAXPATHLEN
  
+/*#define SECURE_PATH          "/bin:/usr/ucb/:/usr/bin:/usr/etc:/etc" /**/
+
  typedef union {
      int int_val;
      char char_val[MAXCOMMANDLENGTH];
author	Todd C. Miller <Todd.Miller@courtesan.com>
	Thu, 10 Feb 1994 19:30:00 +0000 (19:30 +0000)
committer	Todd C. Miller <Todd.Miller@courtesan.com>
	Thu, 10 Feb 1994 19:30:00 +0000 (19:30 +0000)