scp -t . - possible idea for additional parameter

Jefferson Ogata Jefferson.Ogata at noaa.gov
Fri Oct 12 16:31:05 EST 2007


On 2007-10-12 04:12, Larry Becke wrote:
> Maybe I'm just barking up the wrong tree here, as no one seems (to me anyway), to be willing to see things from someone else's perspective.

No one has any trouble seeing things from your perspective. It's exactly
the other way 'round. If you would take the time to understand why
"erroring out" if "../" appears in a path and prepending "./" to the
path will handle only a small fraction of the problem space, arguably
creating more problems than it solves, then maybe there would be some
perspective sharing going on. This advice is not meant merely to rebut
your scp suggestion; it's important to understand how paths can lead you
astray before you try to use simplistic analysis of their string
representations to constrain user activity.

> So far I've received "use chroot, it's great and simple."  or "use webdav and ssl - even though you have to work with keys, keystores, install a webserver, utilize wget and probably a whole plethora of things I've not found yet" or "use rsync" which unfortunately does not fit into the class of usable software for the types of scripts and transfers we are currently doing.

Given your tendency to employ biased, deliberate misquotation in an
argumentative way, coupled with your unwillingness to accept the
challenge of learning some fairly mundane sysadmin tasks (e.g. set up a
WebDAV service, set up an SSL web service, set up a maintainable chroot
hierarchy, learn how to use chown and chmod or even chattr), it's no
wonder people aren't more supportive. Learning to do new things without
flinching will improve your paycheck.

Also, you left out "use filesystem permissions, they're sexy and
drwx------."

Sorry for wandering so far off topic. We now return you to your
regularly scheduled programming.

-- 
Jefferson Ogata <Jefferson.Ogata at noaa.gov>
NOAA Computer Incident Response Team (N-CIRT) <ncirt at noaa.gov>
"Never try to retrieve anything from a bear."--National Park Service


More information about the openssh-unix-dev mailing list