1. 12

(or mksh)

  1.  

  2. 6

    It’s an interesting thought. Dash is designed with an eye to simplicity and speed, not security, but it’s likely to come out better on that front simply by virtue of having a much smaller featureset to attack.

    If they do decide to switch, they’ll turn up a lot of bash scripts with incorrect /bin/sh hashbangs, per Debian’s experience. =P

    1. 4

      Have the Debian script fixes not been getting pushed upstream? I would assume they have, in which case Debian has dealt with the worst of the problem, and has been acting as back-pressure against widespread newly introduced bashisms ever since their transition. Worst case, i.e. for uncooperative upstreams, Fedora packagers can still trawl the Debian package repos for ready-made patches. So theoretically, transitioning now should not prove terribly rocky for Fedora. No?

      1. 2

        Presumably they have, but I assume there’s a fair amount of distro-specific scripting in various places that obviously wouldn’t transfer. It should certainly be less painful for Fedora than it was for Debian.

        Red Hat might not like it because it’ll break customer’s mis-hashbanged scripts.

    2. 5

      This should be obvious from the mailing list thread - but to clarify - this is a proposal/discussion, not a decision.

      1. 1

        I don’t see any reason for switching. Root account should use ‘sh’ by default on every UNIX-like system IMHO. Other accounts should be free to use to install/use whatever they like. The fact that Bash had a bad day doesn’t mean that other shells are more secure.

        1. 1

          I don’t see any reason for switching. Root account should use ‘sh’ by default on every UNIX-like system IMHO.

          These two statements are in conflict. On Fedora, there is only bash.