Alex the Serb has asked for the wisdom of the Perl Monks concerning the following question:


how is Perl standing with security and hackers/crackers? I mean is there any holes we have to know about? Is there any buffer overrflow stuff or something else? Can you help me, I'm suspicious, because of the recent hacker breach on our main computers which have had a lot of Perl scripts executed in cron for root user. However, this happened after a long period of no-problem execution. So I'm wondering if it got something with Perl?


Replies are listed 'Best First'.
Re: security issues and hacker problems
by arhuman (Vicar) on Jan 14, 2002 at 14:03 UTC
    Super Search brings some links to similar discussions :

    Of course perlsec is also a must read...

    UPDATE :
    Of course, the main Perl vulnerability, is the bad programming practices...
    This is often NOT related to Perl.
    Some scripts are "known" to be poorly coded
    (see all the discussions about Matt's script archive or better the davorg's project to rewrite them properly...)

    "Only Bad Coders Code Badly In Perl" (OBC2BIP)