diff options
author | Jesse Vincent <jesse@bestpractical.com> | 2009-10-20 10:52:07 -0400 |
---|---|---|
committer | Jesse Vincent <jesse@bestpractical.com> | 2009-10-20 10:52:07 -0400 |
commit | 172dd9593c69d24c1273d593b8e9ca4fadf1f99c (patch) | |
tree | faa14aae86099379c0072189abd28eaaa12d5e39 | |
parent | 6f15df4765b853018c7db3e5cae157305d7c5e12 (diff) | |
download | perl-172dd9593c69d24c1273d593b8e9ca4fadf1f99c.tar.gz |
suidperl is no longer available. INSTALL should not say it is
-rw-r--r-- | INSTALL | 22 |
1 files changed, 3 insertions, 19 deletions
@@ -1315,25 +1315,9 @@ process or the Perl build process will not help you with these. =head2 suidperl -suidperl is an optional component, which is normally neither built -nor installed by default. From perlfaq1: - - On some systems, setuid and setgid scripts (scripts written - in the C shell, Bourne shell, or Perl, for example, with the - set user or group ID permissions enabled) are insecure due to - a race condition in the kernel. For those systems, Perl versions - 5 and 4 attempt to work around this vulnerability with an optional - component, a special program named suidperl, also known as sperl. - This program attempts to emulate the set-user-ID and set-group-ID - features of the kernel. - -Because of the buggy history of suidperl, and the difficulty -of properly security auditing as large and complex piece of -software as Perl, we cannot recommend using suidperl and the feature -should be considered deprecated. - -Instead, use a tool specifically designed to handle changes in -privileges, such as B<sudo>. +suidperl was an optional component of earlier releases of perl. It is no +longer available. Instead, use a tool specifically designed to handle +changes in privileges, such as B<sudo>. =head1 make depend |