Beefy Boxes and Bandwidth Generously Provided by pair Networks
P is for Practical

Re^2: How to answer "Perl is not secure" objections?

by chargrill (Parson)
on Sep 06, 2007 at 22:54 UTC ( #637554=note: print w/replies, xml ) Need Help??

in reply to Re: How to answer "Perl is not secure" objections?
in thread How to answer "Perl is not secure" objections?

the application runs with the privileges of the web server. If that is root, you have a problem.

No, you have two problems - the first of which is solved by firing your system administrator.

Red Hat locked apache down by changing to some "nobody/nogroup"

No, apache has done that from (very nearly if not) the start. Various distributions will change the username and/or group, but the net effect is that apache needs to be launched as root to bind to a privileged port (< 1024) and then drops privileges to as unprivileged a user as possible.

s**lil*; $*=join'',sort split q**; s;.*;grr; &&s+(.(.)).+$2$1+; $; = qq-$_-;s,.*,ahc,;$,.=chop for split q,,,reverse;print for($,,$;,$*,$/)

Log In?

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: note [id://637554]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others imbibing at the Monastery: (2)
As of 2023-04-02 03:00 GMT
Find Nodes?
    Voting Booth?

    No recent polls found