How secure are shell scripts?

[Maarten Litmaath]

In article <1446 at svin02.info.win.tue.nl>,
	rcpieter at svin02.info.win.tue.nl (Tiggr) writes:
)...  A setuid shell
)script owned by root (world executable) enables ANY user to have a root shell
)by typing two commands.

You can prevent this by using the indir(1) package from the
comp.sources.unix archives.  Also available through anonymous ftp
from star.cs.vu.nl (192.31.231.42), directory pub/maart, which
contains various vi documents as well.
--
            "the C shell is flakier than a snowstorm."  (Guy Harris)