The mailing list for listmasters using Sympa

[Olivier Salaün <address@concealed>]

Mark K a écrit :
> OK.  I've got another thread going on the wwsympa.fcgid C wrapper... It
> doesn't work for me.  I get taint issues.  After I added some code to
> untaint stuff in Lock.pm and List.pm, I got this:
> Insecure dependency in eval while running setuid
> at /usr/lib/perl5/vendor_perl/5.8.8/Locale/Recode/_Conversions.pm line
> 322.
>
>   
Actually we just found out that the "-U" perl option is required when 
using the C wrapper. We've just fixed this in the SVN tree.
> I didn't feel like chasing that stuff into installed modules so I went with 
> sudo.
>   
Using sudo is also a good solution.
> On Thu, 13 Dec 2007 10:27:12 +0100
> Olivier Salaün <address@concealed> wrote:
>
>   
> > The standard way to run wwsympa.fcgi is to use FastCGI ; it allows to 
> > run persistent CGI processes, see 
> > https://www.sympa.org/wiki/manual/web-interface#using_fastcgi.
> > Therefore there is no such drawback for using a perl wrapper.
> >
> > However, in next 5.4 we've change the way wwsympa.fcgi and 
> > sympa_soap_server.fcgi run as the 'sympa' uid. We're now using a C 
> > wrapper, provided by Marcin Deranek. This new solution has the 
> > advantages of not requiring suidperl and also not requiring any sudo 
> > configuration for the server administrator.
> >
> > Mark K a écrit :
> >     
> > > Just wondering why the wwsympa_sudo_wrapper is in perl instead of a
> > > binary like the other wrappers?  When using sudo, this means that
> > > each web access fires up a perl interpreter twice. 
> > >       
>
>
>