Date: Fri, 11 Aug 2000 21:49:30 +0200 From: Neil Blakey-Milner <nbm@mithrandr.moria.org> To: Marcel Moolenaar <marcel@cup.hp.com> Cc: Warner Losh <imp@village.org>, Christopher Masto <chris@netmonger.net>, "Chris D. Faulhaber" <jedgar@fxp.org>, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/gnu/usr.bin/perl Makefile Message-ID: <20000811214929.A57942@mithrandr.moria.org> In-Reply-To: <39945275.F1C94C13@cup.hp.com>; from marcel@cup.hp.com on Fri, Aug 11, 2000 at 12:22:29PM -0700 References: <20000811144136.A12290@netmonger.net> <20000811141800.A14610@netmonger.net> <Pine.BSF.4.21.0008111426270.98390-100000@pawn.primelocation.net> <20000811144136.A12290@netmonger.net> <200008111857.MAA36439@harmony.village.org> <20000811210827.A57382@mithrandr.moria.org> <39945275.F1C94C13@cup.hp.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri 2000-08-11 (12:22), Marcel Moolenaar wrote: > > On Fri 2000-08-11 (12:57), Warner Losh wrote: > > > In message <20000811144136.A12290@netmonger.net> Christopher Masto writes: > > > : The reason against it is that it's a standard part of Perl, and a very > > > : useful one. Without it, those who install from binary, or don't know > > > : to set this option, will not be able to run setuid Perl programs. > > > > > > Good. I want people to have to explicitly do something before setuid > > > scripts of any kind will work on their system. > > > > Why don't we build it, and not make it setuid? > > This would be a bug. I think it's a bit silly to be able to provide it without any security implications and to not do so. I also think it's a bit silly to leave it on all our systems with the possibility of it being insecure in the future. Compromise means providing it without excessive privilege. (and at least one other operating system does this) Neil -- Neil Blakey-Milner Sunesi Clinical Systems nbm@mithrandr.moria.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000811214929.A57942>