in reply to Re: Re: Re: Dangerous diamonds!
in thread Dangerous diamonds!
Do you really need a glob to describe them or do they have well-defined names?
No. It's just laziness. I could opendir/readdir/closedir and use three-arg open. But I didn't, because I didn't know -p/-n used two-arg open.
I'll point out the easiest: make the logs directory writable only by root.
It already is, but one little bug in Apache could perhaps allow the names to be user-defined. After all, the logs are full of user input.
Anyhow, it *all* boils down to laziness. I could set up ACLs, of course. It's a matter of convenience. Usually this works out just fine. Too bad this time Perl didn't DWIM.
Juerd # { site => 'juerd.nl', plp_site => 'plp.juerd.nl', do_not_use => 'spamtrap' }
In Section
Meditations