[Ref: pasc-1003.2-38] Topic: ex - extended desciption

Defect Report concerning: IEEE Std. 1003.2-1992, ISO/IEC 9945-2:1993 - Shell & Utilities
Clause: 5.10.7
PASC Interpretation Ref: pasc-1003.2-38
Topic: ex - extended desciption

This is an unapproved interpretation of PASC 1003.2-1992, ISO/IEC 9945-2:1993 - Shell & Utilities.

Use of the information contained in this unapproved document is at your own risk.

Last update: 20 April,2001

								1003.2-92  #38

 _____________________________________________________________________________


	Interpretation Number:	XXXX
	Topic:			ex - extended desciption
	Relevant Sections:	5.10.7
	Classification:  defect


Interpretation Request: (Defect Report)
-----------------------

Reference: Page 519, Section 5.10.7, "Extended Description"

The specification that ``no .exrc file shall be read unless
it is owned by the same user ID as the effective user ID of
the process'' is necessary but not sufficient.  To keep the
.exrc files from being a security problem, the file should
not be read if it is writeable by anyone other than the owner.

(Keith Bostic)


IEEE Interpretation for 1003.2-1992 
-----------------------------------

The standard states the required behavior and
conforming implementations shall conform to this.

Concerns about the wording of this part of the standard have
been forwarded to the sponsor.
   
Rationale for Interpretation:
-----------------------------

Interpretations cannot make substantive changes to the standard.
This may be considered for a future revision.
 _____________________________________________________________________________