Beefy Boxes and Bandwidth Generously Provided by pair Networks
Don't ask to ask, just ask
 
PerlMonks  

Re: Re: Re: perl2exe - no more secrets

by Marza (Vicar)
on Apr 23, 2003 at 22:50 UTC ( #252707=note: print w/ replies, xml ) Need Help??


in reply to Re: Re: Re: perl2exe - no more secrets
in thread perl2exe - no more secrets

That is a pretty broad cast you've tossed there. ;-)

It depends on the job and the id involved.

If it was a script that only root would use, then there is not really a problem as long as nobody else gets access to the script.

If it is a lowlevel user id, you can debate it.

If it is a script that has root and its plaintext password embeded which everybody is going to use, then you have a gigantic hole(This was my situation).

Now as to embeded passwords being a security risk; a real life example.

Progammer A, thinks like you do. Programmer B hates programmer A and wants to see him fired. Progammer B finds A's password. Programmer B starts using A's account to delete things, print porn on the vice-presidents Assistents printer, etc....

We figured it out but not until after programmer A was put through a suspension(ie the pornography and the sexual harrasment policies).


Comment on Re: Re: Re: perl2exe - no more secrets

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://252707]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others about the Monastery: (5)
As of 2015-07-05 16:21 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    The top three priorities of my open tasks are (in descending order of likelihood to be worked on) ...









    Results (67 votes), past polls