From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gdb-patches-return-39761-listarch-gdb-patches=sources.redhat.com@sources.redhat.com>
Received: (qmail 25450 invoked by alias); 31 May 2005 15:08:35 -0000
Mailing-List: contact gdb-patches-help@sources.redhat.com; run by ezmlm
Precedence: bulk
List-Subscribe: <mailto:gdb-patches-subscribe@sources.redhat.com>
List-Archive: <http://sources.redhat.com/ml/gdb-patches/>
List-Post: <mailto:gdb-patches@sources.redhat.com>
List-Help: <mailto:gdb-patches-help@sources.redhat.com>, <http://sources.redhat.com/ml/#faqs>
Sender: gdb-patches-owner@sources.redhat.com
Received: (qmail 25411 invoked by uid 22791); 31 May 2005 15:08:28 -0000
Received: from mail-out4.apple.com (HELO mail-out4.apple.com) (17.254.13.23)
    by sourceware.org (qpsmtpd/0.30-dev) with ESMTP; Tue, 31 May 2005 15:08:28 +0000
Received: from mailgate1.apple.com (a17-128-100-225.apple.com [17.128.100.225])
	by mail-out4.apple.com (8.12.11/8.12.11) with ESMTP id j4VF8QTS021849
	for <gdb-patches@sourceware.org>; Tue, 31 May 2005 08:08:26 -0700 (PDT)
Received: from relay4.apple.com (relay4.apple.com) by mailgate1.apple.com
 (Content Technologies SMTPRS 4.3.17) with ESMTP id <T713e341826118064e1420@mailgate1.apple.com>;
 Tue, 31 May 2005 08:08:25 -0700
Received: from [17.219.199.234] ([17.219.199.234])
	by relay4.apple.com (8.12.11/8.12.11) with ESMTP id j4VF8NdQ011494;
	Tue, 31 May 2005 08:08:24 -0700 (PDT)
Message-ID: <429C7DE7.5070709@apple.com>
Date: Tue, 31 May 2005 17:54:00 -0000
From: Stan Shebs <shebs@apple.com>
User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.3) Gecko/20040910
MIME-Version: 1.0
To: Bob Rossi <bob@brasko.net>
CC: gdb-patches@sourceware.org
Subject: Re: RFC: Check permissions of .gdbinit files
References: <20050530185201.GA29332@nevyn.them.org> <jeekbo1h6j.fsf@sykes.suse.de> <20050530223305.GA2727@nevyn.them.org> <je7jhg1g9q.fsf@sykes.suse.de> <20050530230026.GA3618@nevyn.them.org> <20050531132742.GA12857@white>
In-Reply-To: <20050531132742.GA12857@white>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-SW-Source: 2005-05/txt/msg00664.txt.bz2

Bob Rossi wrote:

>
>What if we had GDB prompt the user to determine if they wanted to read
>the .gdbinit file in? Then we could add another configuration variable
>to GDB that allowed it to always read in the files. That way, by
>default GDB would be more safe, but for the rest of us, it would work
>the way it always has.
>
I like this idea, or some variation. A developer working in a
less-secure environment can set the variable (env var?) to ask
first before doing, while in an environment like Apple where you
have a thousand engineers sharing files in all kinds of weird ways,
you can set it to "if an intruder gets this far in, .gdbinit is the
least of our worries."

Stan