From 2b8ae0c0c8ac84f7828e7df44b70b7a7f68087db Mon Sep 17 00:00:00 2001
From: Pascal Rigaux <pixel@mandriva.com>
Date: Fri, 17 Aug 2001 23:23:21 +0000
Subject: restrict the progs callable to a few one.

---
 perl-install/standalone/interactive_http/interactive_http.cgi | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'perl-install/standalone/interactive_http/interactive_http.cgi')

diff --git a/perl-install/standalone/interactive_http/interactive_http.cgi b/perl-install/standalone/interactive_http/interactive_http.cgi
index cb184300a..48dd06fb8 100755
--- a/perl-install/standalone/interactive_http/interactive_http.cgi
+++ b/perl-install/standalone/interactive_http/interactive_http.cgi
@@ -62,6 +62,9 @@ sub force_exit_dead_prog {
 sub spawn_server {
     my ($prog) = @_;
 
+    my @authorised_progs = map { chomp($_) } cat_('/etc/drakxtools_http/authorised_progs');
+    member($prog, @authorised_progs) or error("You tried to call a non-authorised program");
+
     fork and return;
 
     $ENV{INTERACTIVE_HTTP} = $script_name;
-- 
cgit v1.2.1