Beefy Boxes and Bandwidth Generously Provided by pair Networks
Your skill will accomplish
what the force of many cannot

Re: 'Insecure dependency' warning Systemd::Daemon / IPC::Run3

by graff (Chancellor)
on May 18, 2016 at 02:05 UTC ( #1163286=note: print w/replies, xml ) Need Help??

in reply to 'Insecure dependency' warning Systemd::Daemon / IPC::Run3

I think the warning is telling you that something in the shell environment has an insecure permission setting -- e.g. the PATH variable includes a directory that can be written to by anyone (or by some arbitrary group). To see the risk involved, suppose your shell's PATH were set up like this:
and that "/home/someone/bin/" had global write access. Someone could put an executable file there and call it something like "ls" or "find" or "wc"; if you were to run a script in this environment, and the script issues a system call to run a program in /bin or /usr/bin (update: but you didn't specify an absolute path for the program), you would end up running whatever happens to be in /home/someone/bin/ instead.

If your script always uses absolute paths for commands that it tries to execute via system calls, or if it explicitly controls the PATH setting (and if variables you include in the command string have been taint-checked), the warning should go away.

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://1163286]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others avoiding work at the Monastery: (4)
As of 2021-02-27 15:31 GMT
Find Nodes?
    Voting Booth?

    No recent polls found