in reply to Re: setuid - insecure dependancy with backticked cmd?
in thread setuid - insecure dependancy with backticked cmd?

i assumed the script is setuid because its giving a setuid error. i didnt realize it was running in taint mode!
 
im not familiar with this runtime enviro, the previous sysadmin left on...less than friendly terms, so im having to pick up the pieces, heh. thanks!

__________
Build a man a fire, and he'll be warm for a day. Set a man on fire, and he'll be warm for the rest of his life.
- Terry Pratchett

  • Comment on Re^2: setuid - insecure dependancy with backticked cmd?

Replies are listed 'Best First'.
Re^3: setuid - insecure dependancy with backticked cmd?
by derby (Abbot) on Apr 22, 2006 at 20:32 UTC

    oops ... so sorry ... I missed the whole setuid portion of that error message. Really doesn't matter tho, the problem is with tainted data being used.

    -derby
[reply]
      yep, you're right on. i untainted some vars with a regex and its blazing along! ++, and thanks for the help! also thanks to thor

      __________
      Build a man a fire, and he'll be warm for a day. Set a man on fire, and he'll be warm for the rest of his life.
      - Terry Pratchett

[reply]

In Section Seekers of Perl Wisdom