From 5e809bc8f9b161e4838e7575216da172a9de1f35 Mon Sep 17 00:00:00 2001
From: espie <>
Date: Fri, 5 Feb 2016 18:09:19 +0000
Subject: [PATCH] be more forceful about not using these. improvements sthen@,
 jmc@. okay millert@, jca@ jmc@

---
 src/lib/libc/stdlib/system.3 | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/src/lib/libc/stdlib/system.3 b/src/lib/libc/stdlib/system.3
index 878bb0a9..bdd94c01 100644
--- a/src/lib/libc/stdlib/system.3
+++ b/src/lib/libc/stdlib/system.3
@@ -29,9 +29,9 @@
 .\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 .\" SUCH DAMAGE.
 .\"
-.\"     $OpenBSD: system.3,v 1.13 2013/07/18 10:14:50 schwarze Exp $
+.\"     $OpenBSD: system.3,v 1.14 2016/02/05 18:09:19 espie Exp $
 .\"
-.Dd $Mdocdate: July 18 2013 $
+.Dd $Mdocdate: February 5 2016 $
 .Dt SYSTEM 3
 .Os
 .Sh NAME
@@ -107,3 +107,10 @@ string.
 Shell meta-characters present will be honored by the
 .Xr sh 1
 command interpreter.
+.Pp
+It is often simpler to bypass the shell and run an external command using
+.Xr fork 2 ,
+.Xr execlp 3 ,
+and
+.Xr waitpid 2
+directly instead of having to sanitize a string for shell consumption.