Just FYI, PATH is always reset by su to prevent exactly this. Same with LD_LIBRA... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		daeken on Nov 5, 2014 \| parent \| context \| favorite \| on: Reflected File Download: A New Web Attack Vector Just FYI, PATH is always reset by su to prevent exactly this. Same with LD_LIBRARY_PATH and other security-critical environment variables.

tedunangst on Nov 5, 2014 [–]

That's after you run su. Just to be clear, I'm talking about an attacker fiddling with your path so you run fake-su, stealing your password, then calling su and making it look like nothing shady happened. By the time su is running, it's far too late for it to do anything.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact