1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Curious About Perl Taint Check

Discussion in 'Plesk for Linux - 8.x and Older' started by carliebentley, Oct 6, 2006.

  1. carliebentley

    carliebentley Guest

    I've been digging through all the conf files and the conf file for perl has an option as follows:

    # Uncomment this line to enable taint checking globally. When Perl is
    # running in taint mode various checks are performed to reduce the
    # risk of insecure data being passed to a subshell or being used to
    # modify the filesystem. Unfortunatly many Perl modules are not
    # taint-safe, so you should exercise care before enabling it on a
    # production server.
    #PerlTaintCheck On

    Would it be possible to enable this (by uncommenting it) to further help prevent Perl vulnerabilities?

    Anyone fooled with this? Or is there anyone with a test box that could try enabling this and see how it affects Plesk 8 and daily operation?