On Tue, Mar 11, 2003 at 01:09:23AM -0600, Ryan Thompson typed:
> Paul Lathrop wrote to Ryan Thompson:
> > > I'd also like to remind the original poster about the security
> > > risks associated with suid binaries. There are many subtle ways in
> > > which suid binaries can bite one in the ass... especially where
> > > other local users are present.
> >
> > Is just learning Perl an option here? Perl scripts aren't binaries -
> > to my understanding at least.
> Correct. They're interpreted scripts, just like shell scripts. The
> only difference is, they're fed through /usr/bin/perl instead of
> /bin/sh. The operating system doesn't distinguish between them.
> > Will they also be denied by the OS?
> Yes.

True. But there is the suidperl binary to circumvent this. If your 
/usr/bin/suidperl is suid root (which it is not by default I believe), 
perl will honor the suid or sgid bits on your perlscripts.

To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-questions" in the body of the message

Reply via email to