<snip> > People here on the list may do proposals where we can do better > codings, but if you want me to go into a discussion about elegant > coding with other I am out.
Hi Fritz, I sincerely hope you realize that this was in no way intended as a criticism or attack on you. Personally, I love ASSP, and think you do a marvelous job - heck, sometimes you provide a fix for small problems with new code/features only minutes after a problem is reported. I am, in fact, in awe... :) :) My problem is, since I am not a programmer, I simply cannot comment intelligently on criticism of the code. All of this said, I do have a serious question regarding any 'potential' (in)security of ASSP: *IF* there was some kind of vulnerability in ASSP - either directly in the assp.pl script, or in one of the CPAN modules that ASSP depends on - what is the *worst* that could happen? Could ASSP ever be compromised to the point that it itself becomes a source of spam (this is one of the 'possible' results that was mentioned)? Could a security hole realistically somehow be leveraged to root someone's server (assuming ASSP is being run as a non-root user)? -- Best regards, Charles ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
