• Sergei Golubchik's avatar
    MDEV-21778 Disable system commands in mysql/mariadb client · 2025597c
    Sergei Golubchik authored
    mysql --sandbox
    
    disables system (\!), tee (\T), pager with an argument(\P foo), source (\.)
    
    does *not* disable edit (\e). Use EDITOR=/bin/false to disable
    or, for example, EDITOR=rnano for something more useful
    
    does *not* disable pager (\P) without an argument. Use
    PAGER=cat or, for example PAGER=less LESSSECURE=1 for something
    more useful
    
    using a disabled command is an error, which can be ignored with --force
    
    Also, a "sandbox" command (\-) - enables the sandbox mode until EOF
    (current file or the session, if interactive)
    2025597c
mysql.test 25.6 KB