Nmap fetching based on UID+passwd, not $HOME

[Daniel Miller <bonsaiviking () gmail com>]

List,

What is the reasoning behind Nmap fetching files from (essentially) 
$(getent passwd $(id -u) | cut -d: -f6)/.nmap, instead of $HOME/.nmap? 
Is it a security issue for folks using sudo? It's making it difficult 
for me to test scripts by putting them into my own .nmap directory and 
then running Nmap with sudo, since it then looks in /root/.nmap/ for 
data files.

I'll gladly work on a patch to use the environment variable instead, but 
not if there is a valid reason for doing it the way it is done 
currently. Thanks for any input!

Dan
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/