On Fri, 17 May 2002, Dan Hardiker wrote:
>> from the cron I would call this command...
>> wget -q -T10 http:/www.mydomain.com/myScript.php -0 /dev/null
> This makes it highly insecure as anyone could execute it (unless you
> locked it down which is silly when you could just run it locally
> yourself). Also the data is going over HTTP which would easily be
> intercepted with ethereal / tcpdump etc. I still *strongly* recommend
> compiling a binary if only for purely security based precautionary
> reasons.

Your point about the script being web-accessible is crucial and sufficient 
reason for not doing things that way.

The tcpdump thing isn't much of a concern, because a connection to a local 
address will be shunted across lo0 (or whatever your loopback interface 
is called), and therefore can only be sniffed by someone with root access 
on that same machine.


PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to