develooper Front page | perl.perl5.porters | Postings from November 2005

Perl PR: "Security holes in Sys::Syslog"

Thread Next
Andy Lester
November 29, 2005 21:05
Perl PR: "Security holes in Sys::Syslog"
Message ID:
Thanks to Steve Peters to pointing me to this article, blaming "Perl  

Apparently, webmin is vulnerable to nasty format strings passed to  

As PR guy for The Perl Foundation, I'm going to put something  
together that refutes this, and gives an explanation of why Perl  
doesn't have a security hole.   (Or, if necessary, why it is a  
security hole and what we're going to do about it)

I'd appreciate any tech details you fine p5pers can supply,  
especially if this is something that we've visited before in the past.


Andy Lester => => => AIM:petdance

Thread Next Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About