On Dec 8, 2003, at 3:15 PM, Dan Anderson wrote:
I have a perl script that writes to its directory, and as such the directory is CHMOD 777 in my cgi-bin. (Linux box) I figured this might be dangerous, but didn't think there was any harm in it. Am I right or will the script kiddies be all over me?
remember the basic permission issues, that final 7 is the killer, it will allow anyone who can get to it to 'write' to it.
Which would allow them to install anything in that directory that they would want to install, and then call it...
general practice is maybe 755 for a cgi bin directory since there really is no gooder reason for group to have 'write' access to the directory.
ciao drieux
---
-- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] <http://learn.perl.org/> <http://learn.perl.org/first-response>
