httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From André Malo>
Subject Re: [users@httpd] Problems w/ suExec
Date Tue, 04 Nov 2003 21:47:45 GMT
* "Stine, Matt" <> wrote:

> Insecure $ENV{PATH} while running setuid at
> /home/web/html/Pise/tmp/revseq/A26756106797792/script line 121.
> My first question would be:  Is this an error message related to suExec?

No. It's from perl, which was started in taint-checking mode. In this mode you
have to set ENV{PATH} to a fixed and trusted value (besides other things). See
`perldoc perlsec` for details.


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message