[Tepix]

Wouldn't it be useful to show ways to mitigate these bypasses?

For example getting a shell with more:

- Setting SHELL to /bin/false before invoking more

- Switching to less in secure mode

- if using more with sudo: NOEXEC flag

[bawolff]

The best way to mitigate is to setup permissions on files so the user cannot read/write things they arent supposed to. Anything else is tempting fate.

[Tepix]

That's just reading and writing. But there are more things you can get access to.