in reply to Re: Re: Re: Re: Company hacks through my Perl's Website Security hole
in thread Company hacks through my Perl's Website Security hole

Agreed, although removing execute permissions from that filesystem would make it a lot harder to break in. I think mod_perl can be coaxed into running perl scripts even if they don't have execute permissions.

Under really good OSs, it should be possible to prevent local privilege escalation, at least for a while.

____________________
Jeremy
I didn't believe in evil until I dated it.

  • Comment on Re: Re: Re: Re: Re: Company hacks through my Perl's Website Security hole