Quoting Chip Salzenberg ([EMAIL PROTECTED]): > According to Michael Stone: > > Quoting Wichert Akkerman ([EMAIL PROTECTED]): > > > What perl-suid should do is check the mountoptions for the filesystem on > > > which the script resides and abort if that was mounted with nosuid. > > > Should be quite simple actually.. > > > > But that's still not general enough. For example, you just missed the > > case of noexec... The solution should be done at a higher level, IMHO... > > Every OS has a different set of mount options that may or may not be > relevant to setuid security. I don't see what 'higher level' would be > useful.
Well, maybe I'm not clear on what you/wichert would do instead. How are you going to check this? Mike Stone
