Commit f3c0c257 authored by simonmar's avatar simonmar
Browse files

[project @ 2001-05-04 16:36:38 by simonmar]

comment explaining why we check the perms on . before reading ./.ghci.
parent dea9b472
-----------------------------------------------------------------------------
-- $Id: InteractiveUI.hs,v 1.65 2001/05/04 14:56:53 simonmar Exp $
-- $Id: InteractiveUI.hs,v 1.66 2001/05/04 16:36:38 simonmar Exp $
--
-- GHC Interactive User Interface
--
......@@ -191,6 +191,12 @@ runGHCi = do
-- and aren't world writable. Otherwise, we could be accidentally
-- running code planted by a malicious third party.
-- Furthermore, We only read ./.ghci if both . and ./.ghci are
-- owned by the current user and aren't writable by anyone else. I
-- think this is sufficient: we don't need to check .. and
-- ../.. etc. because "." always refers to the same directory while a
-- process is running.
checkPerms :: String -> IO Bool
checkPerms name =
handle (\_ -> return False) $ do
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment