Re: Upcoming change to perl: current directory in @INC
On 2016-09-08 08:44:54 -0700, Russ Allbery wrote:
> That's a little better but not a lot better. It means that it's still
> unsafe to run any script out of a world-writeable directory such as /tmp,
> even if the sticky bit is set.
Running things in /tmp or its subdirectories is prone to security
bugs people do not care to fix.
--
Vincent Lefèvre <vincent@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)
Reply to: