Date: Tue, 30 Jan 2001 19:02:01 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Pater Pandoson <ppandoson@eCoNeed.com> Cc: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@FreeBSD.ORG> Subject: Re: perl Message-ID: <20010130190201.P54217@xor.obsecurity.org> In-Reply-To: <3A76DA65.9EDE8E5F@eCoNeed.com>; from ppandoson@eCoNeed.com on Tue, Jan 30, 2001 at 03:14:45PM %2B0000 References: <3A76DA65.9EDE8E5F@eCoNeed.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--o+ZCuNqY+dEAKBWl Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Jan 30, 2001 at 03:14:45PM +0000, Pater Pandoson wrote: > What is the easy way to prevent uses on a system > using perl FreeBSD seem to use perl as nobody so > chmoding will not work unless I change it to be owned > by nobody? But that seems very sloppy. /usr/bin/perl doesn't run with privileges, so there's no security risk there. /usr/bin/suidperl does, but it's not used by anything in the system and chances are you can safely remove it. It's not installed setuid in recent versions of FreeBSD anyway: =46rom /etc/make.conf # To enable building enstalling suidperl with the setuid bit turned on #ENABLE_SUIDPERL=3D true I think older versions had a way of disabling it from here too (this controls how it will be rebuilt by make world). Kris --o+ZCuNqY+dEAKBWl Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE6d4ApWry0BWjoQKURAsmJAJsHMXQ4fFFtewZ0gcEcU+6DJvyzKgCdESW2 7X4qtREuJlH/5M4wXHVPhCQ= =sJqT -----END PGP SIGNATURE----- --o+ZCuNqY+dEAKBWl-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010130190201.P54217>