Beefy Boxes and Bandwidth Generously Provided by pair Networks
Don't ask to ask, just ask

Re: Completely removing a perl function.

by ikegami (Pope)
on Jun 29, 2006 at 16:12 UTC ( #558363=note: print w/replies, xml ) Need Help??

in reply to Completely removing a perl function.

What are you really trying to do? Who are you trying to prevent from accessing this function? As you can see from other posts, this is a security issue. Security problems have solutions, but we need to identify the problem before we can find the solution. Identifying the problem requires us to

  1. identify who/what needs to be protected ("What assets are you trying to protect?"), and to
  2. identify from whom/what it needs to be protected ("What are the risks to the assets?").

Could you elaborate on these topics. We can't develop you devise a means of protection without clear information on them. What you told us to be protected sounds too specific, and we have no information on that from which it should be protected.

  • Comment on Re: Completely removing a perl function.

Replies are listed 'Best First'.
Re^2: Completely removing a perl function.
by BUU (Prior) on Jun 29, 2006 at 19:40 UTC
    Honestly that was what I was trying to accomplish. I execute arbitrary perl and the only minor security hole is that shmget allows people to allocate shared memory that never goes away, which apparently has a negative effect when other processes later want shared memory.
      How is this arbitrary perl being submitted? Running the submission through =~ s/shmget/exit;/g would probably do the trick for web forms.

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://558363]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others browsing the Monastery: (7)
As of 2019-02-19 08:34 GMT
Find Nodes?
    Voting Booth?
    I use postfix dereferencing ...

    Results (104 votes). Check out past polls.