Date: Tue, 30 Jan 2001 19:02:01 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Pater Pandoson <ppandoson@eCoNeed.com> Cc: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG> Subject: Re: perl Message-ID: <20010130190201.P54217@xor.obsecurity.org> In-Reply-To: <3A76DA65.9EDE8E5F@eCoNeed.com>; from ppandoson@eCoNeed.com on Tue, Jan 30, 2001 at 03:14:45PM %2B0000 References: <3A76DA65.9EDE8E5F@eCoNeed.com>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Tue, Jan 30, 2001 at 03:14:45PM +0000, Pater Pandoson wrote: > What is the easy way to prevent uses on a system > using perl FreeBSD seem to use perl as nobody so > chmoding will not work unless I change it to be owned > by nobody? But that seems very sloppy. /usr/bin/perl doesn't run with privileges, so there's no security risk there. /usr/bin/suidperl does, but it's not used by anything in the system and chances are you can safely remove it. It's not installed setuid in recent versions of FreeBSD anyway: From /etc/make.conf # To enable building enstalling suidperl with the setuid bit turned on #ENABLE_SUIDPERL= true I think older versions had a way of disabling it from here too (this controls how it will be rebuilt by make world). Kris [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE6d4ApWry0BWjoQKURAsmJAJsHMXQ4fFFtewZ0gcEcU+6DJvyzKgCdESW2 7X4qtREuJlH/5M4wXHVPhCQ= =sJqT -----END PGP SIGNATURE-----help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010130190201.P54217>