Home/ Questions/Q 8197157
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-07T05:41:04+00:00

Possible Duplicate: Issuing system commands in Linux from C, C++ I see on some

  • 0

Possible Duplicate:
Issuing system commands in Linux from C, C++

I see on some text that it is not good to use system() call in linux programming, I wonder what are the real reasons of it? It should consume more memory and maybe more CPU. Apart from these what could be the reason?

For example, if I type system("echo 1 > file"); instead of using fopen(), fwrite() what a hacker can do in my program/linux system? I saw that system() is not advise because of security issues. But how a person can hack a linux system just because of using system() call? I would be glad if someone can explain tangibly what could go bad to use system().

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Using system("echo 1 > file"); literally isn’t a security risk, just a needless execution of another process where you don’t need one.

    The risk comes in when you build a string programmatically and then use it with system(). Then you have a risk of Shell Command Injection, where you thought you were building one command, but a malicious user subverts your program by giving you carefully crafted inputs that cause your command to do something you didn’t expect.

    • 0