develooper Front page | perl.perl5.porters | Postings from December 2017

Re: [perl #74142] provide a better c wrapper example in perlsec

From:
Zefram
Date:
December 11, 2017 00:34
Subject:
Re: [perl #74142] provide a better c wrapper example in perlsec
Message ID:
20171211003405.GH25404@fysh.org
The C wrapper code is actually fine as it is: its purpose is to
avoid the shebang race condition, not to sanitise other aspects of
the environment.  Much of perlsec is about how Perl is actually OK to
run set-id.  However, the documentation about the race condition and
the wrapper was poor.  I've revised it, and added a section about sudo,
in commit b5145c7d479fcfcb104fc6d3d89b4d757ca3cd15.

-zefram



nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About