Re: modperl security model question

2001-04-17 Thread Issac Goldstand
darren chamberlain wrote: Be sure to check that $line is defined: Even better: perl use IO::File; my $input = IO::File-new("/tmp/tmppswd") || die "Couldn't open /tmp/foo.pl"; my $line = $input-getline() || 'some safe default value, like ""'; die "\$line is

Re: modperl security model question

2001-04-17 Thread G.W. Haywood
Hi all, On Mon, 16 Apr 2001, darren chamberlain wrote: Thomas K. Burkholder ([EMAIL PROTECTED]) said [snip] my $input = IO::File-new("/tmp/tmppswd") || die "Couldn't open /tmp/foo.pl"; Probably doesn't matter in this case, but I'd try to get used to using the "or" operator instead of the

Re: modperl security model question

2001-04-16 Thread Issac Goldstand
PGP Key 0xE0FA561B - Fingerprint: 7E18 C018 D623 A57B 7F37 D902 8C84 7675 E0FA 561B - Original Message - From: "sterling" [EMAIL PROTECTED] To: "Thomas K. Burkholder" [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Sunday, April 15, 2001 6:06 PM Subject: Re: modperl sec

Re: modperl security model question

2001-04-16 Thread Thomas K. Burkholder
ED] Cc: [EMAIL PROTECTED] Sent: Sunday, April 15, 2001 6:06 PM Subject: Re: modperl security model question On Sun, 15 Apr 2001, Thomas K. Burkholder wrote: Thanks again for the help - I have another one- My application consists of perl modules with file permissions set only to a p

Re: modperl security model question

2001-04-16 Thread darren chamberlain
Be sure to check that $line is defined: Thomas K. Burkholder ([EMAIL PROTECTED]) said something to this effect on 04/16/2001: Note, /tmp/tmppswd is read-only by the installer of the product, but I should be root in access.conf (right?) so I should be able to read it anyway. perl use

Mea Culpa [Was: Re: modperl security model question]

2001-04-16 Thread Thomas K. Burkholder
It's defined all right, it gets printed to STDERR. The problem was that the file I was actually using was a perl file '/tmp/foo.pl', just because it didn't matter what was in the file while I tried to make it work. But, wait, it does matter, because the first thing in the file was "use

modperl security model question

2001-04-15 Thread Thomas K. Burkholder
Thanks again for the help - I have another one- My application consists of perl modules with file permissions set only to a particular user 'burkhold'. The database password is kept in plaintext in one of those modules. I use the User: and Group: directives in access.conf to cause the uid of

Re: modperl security model question

2001-04-15 Thread sterling
On Sun, 15 Apr 2001, Thomas K. Burkholder wrote: Thanks again for the help - I have another one- My application consists of perl modules with file permissions set only to a particular user 'burkhold'. The database password is kept in plaintext in one of those modules. I use the User: and