> Thanks for sharing your code; unfortunately, it's not working for me.
> I copied it into my httpd.conf file, stopped/started the server and
> I still get the same error:
Sorry, getting out of good ideas.. I'm not using mod_perl 1.99, this
probably explains why my code does not work, and also it prevents me
from further investigating your problem. There was a thread recently
on the list about <perl> ... </perl> section only being implemented
recently, do you run the latest version of mod_perl?
> Insecure $ENV{PATH} while running setgid
While running setgid? That's odd (although I don't think this
nterfers with your problem in any way)
> foreach my $release (`/bin/ls $path`) { # $path is already untainted
> <do stuff>
> }
TI (still) MTOWTDI: why not try
use IO::Pipe;
my $pipe = new IO::Pipe()->reader("/bin/ls",$path);
while(<$pipe>) {
}
(although this will not save you from having to review all your codebase)
--
Dominique QUATRAVAUX Ingénieur senior
01 44 42 00 08 IDEALX
