Great Circle Associates Majordomo-Users
(June 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Just an FYI on perl
From: Richard Pieri <ratinox @ unilab . dfci . harvard . edu>
Date: 27 Jun 1996 16:32:50 -0400
To: Majordomo-users @ GreatCircle . COM
In-reply-to: Daniel Lark's message of Thu, 27 Jun 1996 13:41:34 -0600 (MDT)
References: <199606271941.NAA00249@netsteps.com> 
-----BEGIN PGP SIGNED MESSAGE-----

>>>>> "DL" == Daniel Lark <dan@netsteps.com> writes:

DL> For those who might not know, CERT has just issued an advisory on
DL> Perl 4.x through 5.002.

Specifically, suidperl, the perl interpreter which attempt to fake out
the kernel to allow set-UID scripts.  Since Majordomo uses a C wrapper
program, it is secure in this regard.  Compiled programs do not generate
the race condition that can result from set-UID scripts.

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3
Charset: noconv

iQCVAwUBMdLv9p6VRH7BJMxHAQHmzQP9GU8aaoLrY12DqmpbLwbGv1sSryRirl3S
+G0Jxvp+mvl+OHQ3GbyKddToWfC4qw3k36/J1bzLPG9OJSih5YWzMPbRPKwTQYBR
y9/ayQuhNG7DBrRDbCxC03USSpQ8ioHHKZsfOAB52xFP367s/drpj6GuQzFXFbUI
g6YEUExkX5A=
=TTtQ
-----END PGP SIGNATURE-----
-- 
Richard Pieri/Information Services \ Curiosity never killed anything, except
<ratinox@unilab.dfci.harvard.edu>   \ maybe a few hours. -A cat's guide to life
http://www.dfci.harvard.edu/         \
Follow-Ups:
References:
Indexed By Date Previous: Re: Reply-To
From: Steve Easley <steve@netside.com>
Next: Re: Just an FYI on perl
From: jkrage@scientech.com (Joshua Krage)
Indexed By Thread Previous: Just an FYI on perl
From: Daniel Lark <dan@netsteps.com>
Next: Re: Just an FYI on perl
From: Jim Jagielski <jim@jaguNET.com>
Google
 
Search Internet Search www.greatcircle.com