No executables in /tmp
Gregory_Hill at tni.com
Mon Mar 27 16:55:06 MST 2006
> I don't get it. Does apache spawn new perl processes? I thought that
> mod_perl was part of the apache process. How could someone exec a new
> perl command on your machine via mod_perl? Doesn't mod_perl prevent
> (or at least provide a way to secure) exec and eval calls?
Well, I was referring to CGI Perl, which does spawn a new Perl process
per request, from my understanding. With mod_perl, I think you're
probably right. If you load it as a DSO, then the DSO needs to be
executable by apache, but that is all. Or so I would assume.
More information about the PLUG