From owner-cvs-all  Fri Aug 11 12:53:22 2000
Delivered-To: cvs-all@freebsd.org
Received: from ns1.sunesi.net (ns1.sunesi.net [196.15.192.194])
	by hub.freebsd.org (Postfix) with ESMTP
	id 05A6037B7C6; Fri, 11 Aug 2000 12:53:10 -0700 (PDT)
	(envelope-from nbm@sunesi.net)
Received: from nbm by ns1.sunesi.net with local (Exim 3.03 #1)
	id 13NKo6-000F5G-00; Fri, 11 Aug 2000 21:49:30 +0200
Date: Fri, 11 Aug 2000 21:49:30 +0200
From: Neil Blakey-Milner <nbm@mithrandr.moria.org>
To: Marcel Moolenaar <marcel@cup.hp.com>
Cc: Warner Losh <imp@village.org>,
	Christopher Masto <chris@netmonger.net>,
	"Chris D. Faulhaber" <jedgar@fxp.org>, cvs-committers@FreeBSD.org,
	cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/gnu/usr.bin/perl Makefile
Message-ID: <20000811214929.A57942@mithrandr.moria.org>
References: <20000811144136.A12290@netmonger.net> <20000811141800.A14610@netmonger.net> <Pine.BSF.4.21.0008111426270.98390-100000@pawn.primelocation.net> <20000811144136.A12290@netmonger.net> <200008111857.MAA36439@harmony.village.org> <20000811210827.A57382@mithrandr.moria.org> <39945275.F1C94C13@cup.hp.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0.1i
In-Reply-To: <39945275.F1C94C13@cup.hp.com>; from marcel@cup.hp.com on Fri, Aug 11, 2000 at 12:22:29PM -0700
Organization: Sunesi Clinical Systems
X-Operating-System: FreeBSD 3.3-RELEASE i386
X-URL: http://rucus.ru.ac.za/~nbm/
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri 2000-08-11 (12:22), Marcel Moolenaar wrote:
> > On Fri 2000-08-11 (12:57), Warner Losh wrote:
> > > In message <20000811144136.A12290@netmonger.net> Christopher Masto writes:
> > > : The reason against it is that it's a standard part of Perl, and a very
> > > : useful one.  Without it, those who install from binary, or don't know
> > > : to set this option, will not be able to run setuid Perl programs.
> > >
> > > Good.  I want people to have to explicitly do something before setuid
> > > scripts of any kind will work on their system.
> > 
> > Why don't we build it, and not make it setuid?
> 
> This would be a bug.

I think it's a bit silly to be able to provide it without any security
implications and to not do so.  I also think it's a bit silly to leave
it on all our systems with the possibility of it being insecure in the
future.

Compromise means providing it without excessive privilege.

(and at least one other operating system does this)

Neil
-- 
Neil Blakey-Milner
Sunesi Clinical Systems
nbm@mithrandr.moria.org


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message