From owner-freebsd-security Sat Jan 12 0:19:13 2002 Delivered-To: freebsd-security@freebsd.org Received: from newmail.halenet.com.au (newmail.halenet.com.au [203.55.33.235]) by hub.freebsd.org (Postfix) with ESMTP id DFA2037B400 for ; Sat, 12 Jan 2002 00:19:08 -0800 (PST) Received: (from root@localhost) by newmail.halenet.com.au (8.11.6/8.11.6) id g0C8LKO32655 for freebsd-security@freebsd.org; Sat, 12 Jan 2002 18:21:20 +1000 (EST) (envelope-from timbo@halenet.com.au) Received: from laptop (modem-104-st.halenet.com.au [203.55.33.104]) by newmail.halenet.com.au (8.11.6/8.11.6) with SMTP id g0C8LGS32581 for ; Sat, 12 Jan 2002 18:21:17 +1000 (EST) (envelope-from timbo@halenet.com.au) Message-ID: <077f01c19b41$7cf205a0$6500a8c0@halenet.com.au> From: "list" To: Subject: suidperl Date: Sat, 12 Jan 2002 18:16:49 +1000 MIME-Version: 1.0 X-scanner: scanned by Inflex 1.0.10 - (http://pldaniels.com/inflex/) Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4807.1700 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi I have just looked through the archives regarding FreeBSD and suidperl. Can anyone tell me what security issues there may be with enabling suidperl and what the best way to achieve this would be? TIA Tim ______________________________________ Scanned and protected by HaleNET using Inflex and Sophos Antivirus HaleNET Your Local Internet SERVICE Provider http://www.halenet.com.au Disclaimer: While we at HaleNET take viruses very seriously and are taking all practical steps to prevent them from reaching you, we cannot guarrantee that any viruses will not reach you. We urge customers to update their anti virus software regularly. HaleNET updates ours every 2 hours. Please contact HaleNET if you need a Sophos anti virus. In the past 6 months we have blocked between 100 and 3000 per day. This service is provided on thei basis that no liability will be accepted by HaleNET. If any customer does not wish us to scan their email prior to delivery then please email us. Most ISP's do not scan email or charge a fee for email scanning, this is in part why these viruses are allowed to distrubute themselves. Many of the National ISP's actually make money out of letting viruses increase the data downloads of customers or to wholesale customers such as ISP's like HaleNET. This service we are providing to HaleNET customers may have just saved the recipient as much as $150, plus the inconvenience of having to remove this virus. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message