in reply to Icky Gross and Disgusting @INC Kludges. (code, discussion)

Why would the modules installed at {$WEB_PAGES}/./lib need to be a+r? The only people that need to read it would be the user that that web server runs under, and yourself. CGI scripts ought to be 770, if not 700 (assuming that the script is owned by the server UID), if not 550/500 for finalized products. Support modules can be set to the same protection levels. In addition, at some point you will have to put your modules (the ones you are writing, not the ones that you need to install) in that space, and you'll have the same problems with blackhats as you do now.
Dr. Michael K. Neylon - mneylon-pm@masemware.com || "You've left the lens cap of your mind on again, Pinky" - The Brain
  • Comment on Re: Icky Gross and Disgusting @INC Kludges. (code, discussion)

Replies are listed 'Best First'.
Re (2): Icky Gross and Disgusting @INC Kludges. (code, discussion)
by deprecated (Priest) on May 14, 2001 at 21:15 UTC
    Well, Masem, you know what they say about assumptions. :) In this case, the server is not running as me, nor is the server a member of my group. So the file needs to be u+rw (u being me), g+r (g being my group), and o+r (o being others).

    Which is more succinctly expressed as "a+r". The good news is people I've talked to dont think its a big issue. I am concerned about our proprietary modules (read: the ones I coded) getting viewed by black hats though. So I'll be discussing this with the admins tomorrow I guess.

    --
    Laziness, Impatience, Hubris, and Generosity.

[reply]

In Section Seekers of Perl Wisdom