Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Find and EXECDIR option
Top Forums UNIX for Dummies Questions & Answers Find and EXECDIR option Post 302341369 by mojoman on Wednesday 5th of August 2009 05:40:26 PM
Old 08-05-2009
Find and EXECDIR option
Hello,

I was reading the man pages of find and it says that the -exec option should not be used. I read the following about the recommended option, -execdir:

Code:
 -execdir command {} +
              Like -exec, but the specified command is run from the  subdirec‐
              tory  containing  the  matched  file,  which is not normally the
              directory in which you started find.  This a  much  more  secure
              method  for invoking commands, as it avoids race conditions dur‐
              ing resolution of the paths to the matched files.  As  with  the
              -exec option, the '+' form of -execdir will build a command line
              to process more than one matched file, but any given  invocation
              of command will only list files that exist in the same subdirec‐
              tory.  If you use this option, you must ensure that  your  $PATH
              environment  variable  does not reference the current directory;
              otherwise, an attacker can run any commands they like by leaving
              an appropriately-named file in a directory in which you will run
              -execdir.

I do not really follow the explanation well.

Question 1: What is this race condition they arte talking about?
Question 2: Why if a hacker leaves a file in a directory that the execdir will examine poses a risk? Does the execdir option RUN every file?
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

find with prune option

Hi, I want to list files only from the current dir and its child dir (not from child's child dir). i have the following files, ./ABC/1.log ./ABC/2.log ./ABC/ABC1/A.log ./ABC/ABC1/B.log ./ABC/ABC1/XYZ/A1.log ./ABC/ABC1/XYZ/A2.log Here i want to list only the log file from current... (1 Reply)
Discussion started by: apsprabhu
1 Replies

2. Shell Programming and Scripting

help with find command and prune option

Hi I have a directory say mydir and inside it there are many files and subdirectories and also a directory called lost+found owned by root user I want to print all files directories and subdirectorres from my directory using find command except lost+found If i do find . \( -name... (3 Replies)
Discussion started by: xiamin
3 Replies

3. Shell Programming and Scripting

Find in Bash with -a option

Hi, The proble is below: Assume i have files starting from "process" then date/time then ".log". ex . process.20100504092942.log process.20100503152213.log process.20100430144217.log process.20100429153644.log process.20100428121200.log process.20100427130746.log... (2 Replies)
Discussion started by: meetvipin
2 Replies

4. Shell Programming and Scripting

recently introduced to the newer option for find...does an older option exist?

To find all the files in your home directory that have been edited in some way since the last tar file, use this command: find . -newer backup.tar.gz Is anyone familiar with an older solution? looking to identify files older then 15mins across several directories. thanks, manny (2 Replies)
Discussion started by: mr_manny
2 Replies

5. Shell Programming and Scripting

Please suggest me a better option than FIND command

Hi All, Could you please help me in searching files in a better way satisfying the below conditions I want to search files in a path whose access time is more than 5min and less than 60 min and whose Byte size is greater than zero For this, i am using the below command, but it is... (2 Replies)
Discussion started by: sparks
2 Replies

6. Shell Programming and Scripting

Confusing find command option

Hi, I am a little bit confusing of using find command. Actually, I am planning to delete the files whatever the files are existing in the day before yesterday. So, I am writing the command like this. find . -name "*.txt" -ctime -2 { here I am confusing, if I will use +2 or +1 also I am... (5 Replies)
Discussion started by: nagraju.allam
5 Replies

7. Shell Programming and Scripting

Help with find -perm option

How to find all files for instance that match the permission rwxr*x--- where * is a wildcard which can be optionally asserted but all the others must match? Thanks in advance (7 Replies)
Discussion started by: stevensw
7 Replies

8. Shell Programming and Scripting

find -regex option

I'm trying to use regular expression arguments as variables. I have to surround the regular expression with double quotes or else it automatically expands that regular expression to whatever is in that directory. Unfortunately when I run 'find' it further surrounds the double quotes with single... (6 Replies)
Discussion started by: stevensw
6 Replies

9. UNIX for Dummies Questions & Answers

find with prune option help needed

Hello, I am using ksh93 (/usr/dt/bin/dtksh) on Solaris and am stuck when trying to use find with the -prune option. I need to search a directory (supplied in a variable) for files matching a certain pattern, but ignore any sub-directories. I have tried: find ${full_path_to_dir_to_search}... (9 Replies)
Discussion started by: gary_w
9 Replies

10. UNIX for Dummies Questions & Answers

find with mtime option

Hi, Please give me more details on the following examples, about "mtime" option. When I try this, I could not get the expected output, please help. find . -mtime -1 -print find . -mtime +1 -print find . -mtime 1 -print How do I get the files modified between two dates, say from... (4 Replies)
Discussion started by: Dev_Dev
4 Replies

LEARN ABOUT V7

dh_install

DH_INSTALL(1)							     Debhelper							     DH_INSTALL(1)

NAME

       dh_install - install files into package build directories

SYNOPSIS

       dh_install [-Xitem] [--autodest] [--sourcedir=dir] [debhelperoptions] [file|dir...destdir]

DESCRIPTION

       dh_install is a debhelper program that handles installing files into package build directories. There are many dh_install* commands that
       handle installing specific types of files such as documentation, examples, man pages, and so on, and they should be used when possible as
       they often have extra intelligence for those particular tasks. dh_install, then, is useful for installing everything else, for which no
       particular intelligence is needed. It is a replacement for the old dh_movefiles command.

       This program may be used in one of two ways. If you just have a file or two that the upstream Makefile does not install for you, you can
       run dh_install on them to move them into place. On the other hand, maybe you have a large package that builds multiple binary packages. You
       can use the upstream Makefile to install it all into debian/tmp, and then use dh_install to copy directories and files from there into the
       proper package build directories.

       From debhelper compatibility level 7 on, dh_install will fall back to looking in debian/tmp for files, if it does not find them in the
       current directory (or wherever you've told it to look using --sourcedir).

FILES

       debian/package.install
	   List the files to install into each package and the directory they should be installed to. The format is a set of lines, where each
	   line lists a file or files to install, and at the end of the line tells the directory it should be installed in. The name of the files
	   (or directories) to install should be given relative to the current directory, while the installation directory is given relative to
	   the package build directory. You may use wildcards in the names of the files to install.

	   Note that if you list exactly one filename or wildcard-pattern on a line by itself, with no explicit destination, then dh_install will
	   automatically guess the destination to use, the same as if the --autodest option were used.

       debian/not-installed
	   Used with the deprecated --list-missing and --fail-missing options.	Please refer to dh_missing(1) for the documentation of this file.

OPTIONS

       --list-missing
	   Deprecated: Please use dh_missing --list-missing instead.  If you use this option, dh_install will call dh_missing with that option
	   after it has processed all the files.  Please see dh_missing(1) for the documentation of this option.

	   This option is removed in compat 12.

       --fail-missing
	   Deprecated: Please use dh_missing --fail-missing instead.  If you use this option, dh_install will call dh_missing with that option
	   after it has processed all the files.  Please see dh_missing(1) for the documentation of this option.

	   This option is removed in compat 12.

       --sourcedir=dir
	   Look in the specified directory for files to be installed.

	   Note that this is not the same as the --sourcedirectory option used by the dh_auto_* commands. You rarely need to use this option,
	   since dh_install automatically looks for files in debian/tmp in debhelper compatibility level 7 and above.

       --autodest
	   Guess as the destination directory to install things to. If this is specified, you should not list destination directories in
	   debian/package.install files or on the command line. Instead, dh_install will guess as follows:

	   Strip off debian/tmp (or the sourcedir if one is given) from the front of the filename, if it is present, and install into the dirname
	   of the filename. So if the filename is debian/tmp/usr/bin, then that directory will be copied to debian/package/usr/. If the filename
	   is debian/tmp/etc/passwd, it will be copied to debian/package/etc/.

       file|dir ... destdir
	   Lists files (or directories) to install and where to install them to.  The files will be installed into the first package dh_install
	   acts on.

LIMITATIONS

       dh_install cannot rename files or directories, it can only install them with the names they already have into wherever you want in the
       package build tree.

       However, renaming can be achieved by using dh-exec with compatibility level 9 or later.	An example debian/package.install file using dh-
       exec could look like:

	#!/usr/bin/dh-exec
	debian/default.conf => /etc/my-package/start.conf

       Please remember the following three things:

       o   The package must be using compatibility level 9 or later (see debhelper(7))

       o   The package will need a build-dependency on dh-exec.

       o   The install file must be marked as executable.

SEE ALSO

       debhelper(7)

       This program is a part of debhelper.

AUTHOR

       Joey Hess <joeyh@debian.org>

11.1.6ubuntu2							    2018-05-10							     DH_INSTALL(1)
All times are GMT -4. The time now is 08:18 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy