Next: Further Reading on Security, Previous: Security Considerations for locate, Up: Security Considerations [Contents][Index]
Where untrusted parties can create files on the system, or affect the
names of files that are created, all uses for find,
locate and xargs have known security problems except the
following:
Uses where the programs are used to prepare lists of file names upon which no further action will ever be taken.
Use of the ‘-delete’ action with find to delete files
which meet specified criteria
Use of the ‘-execdir’ action with find where the
PATH environment variable contains directories which contain
only trusted programs.