Beefy Boxes and Bandwidth Generously Provided by pair Networks
We don't bite newbies here... much
 
PerlMonks  

Re: Re: Re: perl2exe - no more secrets

by Marza (Vicar)
on Apr 23, 2003 at 22:50 UTC ( #252707=note: print w/ replies, xml ) Need Help??


in reply to Re: Re: Re: perl2exe - no more secrets
in thread perl2exe - no more secrets

That is a pretty broad cast you've tossed there. ;-)

It depends on the job and the id involved.

If it was a script that only root would use, then there is not really a problem as long as nobody else gets access to the script.

If it is a lowlevel user id, you can debate it.

If it is a script that has root and its plaintext password embeded which everybody is going to use, then you have a gigantic hole(This was my situation).

Now as to embeded passwords being a security risk; a real life example.

Progammer A, thinks like you do. Programmer B hates programmer A and wants to see him fired. Progammer B finds A's password. Programmer B starts using A's account to delete things, print porn on the vice-presidents Assistents printer, etc....

We figured it out but not until after programmer A was put through a suspension(ie the pornography and the sexual harrasment policies).


Comment on Re: Re: Re: perl2exe - no more secrets

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://252707]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others about the Monastery: (3)
As of 2014-12-29 02:20 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    Is guessing a good strategy for surviving in the IT business?





    Results (184 votes), past polls