On Tue, Jul 03, 2001 at 04:20:53PM +0400, Ilya Martynov wrote:
AFAIK there is no known buffer overflow problem in perl functions. It
is a very good idea to use tainted mode for Perl programs which should
be run in dangerous environment. Check 'man perlsec' for more info.
Also read Phrack #55,
SDiZ Cheng [EMAIL PROTECTED] writes:
Are there any known buffer overflow problem in perl functions?
Perl inherits some problems of the hosting environment, for example
buffer overflows in syslog().
Apart from that, there are no known buffer overflow issues, but code
injection attacks are still
I am going to rewrite suexec.c of apache ( to suit my boss's need ).
As this program is SUID, I don't want to make any mistake.
Besides not passing those arguments to printf( ), what C/C++ function(s)
I should take extra care while using?
--
Cheng Yuk Pong (SDiZ)
4096/1024 DH/DSS 0xA4C6FAD3
On Tue, 03 Jul 2001, SDiZ Cheng wrote:
I am going to rewrite suexec.c of apache ( to suit my boss's need ).
As this program is SUID, I don't want to make any mistake.
Are you really sure you wanna do that? As this program runs as SUID,
the programmers put really a lot of emphasize onto
Besides not passing those arguments to printf( ), what C/C++
function(s) I should take extra care while using?
All of them.
No, seriously.
Paul Haesler
[EMAIL PROTECTED] icq: 74142604
We are the Steely-Pips and we have no fear, no
spats in our vats, no rules, no schools, no
Just as an additional question:
Are there any known buffer overflow problem in perl functions?
Coz I am writing another program in perl which will, too, run as
root and listen to TCP socket with SSL.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble?
SC Just as an additional question:
SC Are there any known buffer overflow problem in perl functions?
SC Coz I am writing another program in perl which will, too, run as
SC root and listen to TCP socket with SSL.
AFAIK there is no known buffer overflow problem in perl functions. It
is a very
I am going to rewrite suexec.c of apache ( to suit my boss's need ).
As this program is SUID, I don't want to make any mistake.
Besides not passing those arguments to printf( ), what C/C++ function(s)
I should take extra care while using?
--
Cheng Yuk Pong (SDiZ)
4096/1024 DH/DSS 0xA4C6FAD3
On Tue, 03 Jul 2001, SDiZ Cheng wrote:
I am going to rewrite suexec.c of apache ( to suit my boss's need ).
As this program is SUID, I don't want to make any mistake.
Are you really sure you wanna do that? As this program runs as SUID,
the programmers put really a lot of emphasize onto
Lukas Ruf wrote on Tue Jul 03, 2001 at 10:34:44AM:
On Tue, 03 Jul 2001, SDiZ Cheng wrote:
I am going to rewrite suexec.c of apache ( to suit my boss's need ).
As this program is SUID, I don't want to make any mistake.
Are you really sure you wanna do that?
If so, there is a HOWTO out
Besides not passing those arguments to printf( ), what C/C++
function(s) I should take extra care while using?
All of them.
No, seriously.
Paul Haesler
[EMAIL PROTECTED] icq: 74142604
We are the Steely-Pips and we have no fear, no
spats in our vats, no rules, no schools, no
Just as an additional question:
Are there any known buffer overflow problem in perl functions?
Coz I am writing another program in perl which will, too, run as
root and listen to TCP socket with SSL.
SC Just as an additional question:
SC Are there any known buffer overflow problem in perl functions?
SC Coz I am writing another program in perl which will, too, run as
SC root and listen to TCP socket with SSL.
AFAIK there is no known buffer overflow problem in perl functions. It
is a very
13 matches
Mail list logo
