Martin Marcher wrote: > /usr/bin/perl > /usr/bin/wget > /bin/tar How about /bin/cat, which can be used to transfer copies of any of these onto the system?
> * Why not take that one further and require explicit permission to run > _any_ program? Because then you have a web server with some CGIs. Which also has a fairly dreadful security history in general. -- see shy jo
signature.asc
Description: Digital signature
