Perl security question/RFC
Ivan Avery Frey
ivan.frey-H217xnMUJC0sA/PxXw9srA at public.gmane.org
Thu Jul 20 13:14:44 UTC 2006
Madison Kelly asked:
> So then, my question is, what is the most secure, *reasonable* way to let a
> perl program execute commands as root?
Rick Delaney wrote:
> Anyway, you're much better off using sudo to control access to commands. You
> should definitely run the perl script with tainting enabled to help prevent
> you from passing bad args to the sudo commands.
>
So the most reasonable way to perl execute commands as root is for root to run perl.
Thus the need for sudo. This is the way Mac OS X does it.
Ivan.
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list