DEPARTMENTS
Operating Systems
Server Management
Networking
Security
Storage
Databases
Languages
Your Career
SYS ADMIN
Issues
Source Code
Whitepapers
About Us
Contact Us
Editors
Advertise

Current Issue


Table of contents

CD-ROM

Sys Admin and The Perl Journal CD-ROM version 12.0

Version 12.0 delivers every issue of Sys Admin from 1992 through 2006 and every
issue of The Perl Journal from 1996-2002 in one convenient CD-ROM!

Order now!
Sys Admin Magazine > Archives > 2001 > June 2001
Rules for Safe SUID Programming

  1. Do not use SUID shell scripts.

  2. Never, ever, under any circumstances, use SUID C-shell scripts.

  3. Always manually set your IFS.

  4. Always manually set your PATH and use absolute path names.

  5. Understand how the programs you call work, and how they handle arguments.

  6. Do not use temporary files. If you must, don't put them in a publicly writable area.

  7. Distrust and check all user input and eliminate dangers such as meta-characters.



MarketPlace

Build IT Knowledge with Current & Trusted Content
Helps Employees Develop & Hone New Technical Programming Skills. Sign Up & Get Full Access.

Villanova University Six Sigma & IT Certificate Programs
100% Online programs in Six Sigma, IS Security, CISSP Prep, Business Analysis, Proj. Mgmt. and more!

Workflow Enabled Help Desk & IT Service Management
Automate service desk activities and integrate processes across IT. Learn more here.

WinDev 11 - Powerful IDE
Develop 10 times faster ! ALM, IDE, .Net, RAD, 5GL, Database, 5GL, 64-bit, etc. Free Express version

Wanna see your ad here?
© 2008 Think Services, Privacy Policy, Terms of Service
United Business Media Limited
Comments about the Web site: webmaster@sysadminmag.com
Web Sites: BYTE.com, dotnetjunkies.com, Dr. Dobb's Journal, SD Expo, Sys Admin, sqljunkies.com, UnixReview.com,

web2