Securing PERL/CGI

**ksingh** · 09-16-2003 12:55 PM

Hello,

How can I disable call to certain functions like we do in php.ini for PERL/CGI? This is to prevent someone from running a script which replicates Telnet.

In a thread at webhostingtalk.com I saw someone suggest 'perl -T'. How about that?

As far I know enabling/disabling suexec will not prevent this thing.

Please comment.

Regards

K Singh

cPanel.net Support Ticket Number:

**ksingh** · 09-16-2003 01:33 PM

One way to work around it is to change permissions on all the binary files in /bin,/usr/bin directories. Then the only thing to be clarified is to include which users in a group (who may execute those files) in order for CPanel to function properly.

Any suggestions?

K Singh

cPanel.net Support Ticket Number:

LinkBack

Thread Tools

Securing PERL/CGI

perl/cgi errors

Securing execution of perl

Perl cgi's now need -w or -U to run

serving up html using cgi-perl

perl-demployer.cgi