• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

Perl threat

K

knocx

Guest
it is possible to traverse and read whole server files with perl/cgi scripts even using plesk suexec.

i.e one can read /etc/proftpd.conf ..etc you guess the rest!


is there a pre-caution for that? how can perl be hardened on run time (like php safe_mode directive).

or is the only way to disable perl handler in apache
 
You must log in or register to reply here.

Similar threads

A
Issue 502 Gateway error with HTTP POST Requests but not GET requests
Replies
3
Views
3K
Maarten
M
P
Resolved Disable output buffering
Replies
4
Views
1K
Patashoow
P
Hangover2
Resolved Disabled PHP "Hosting performance settings management" can be bypassed by using .user.ini or ini_set()
Replies
19
Views
6K
Hangover2
Hangover2
P
Question Perl handler in 18.0.40
Replies
2
Views
3K
Pat Brown
P
Ehud
Question Is Plesk Email SRS fully configured, or it requires an extension?
Replies
0
Views
3K
Ehud
Ehud
Back
Top