How is Perl and PHP and other scripting languages secured against arbitrary command execution web-based shells using commands such as exec system etc because I would like to offer a good selection of shell scripting at minimal PHP & Perl but would also like to add Python/Ruby/ASP at a later stage. Thanks in advance
In PHP, you can activate safemode to disallow calls to the exec command. To be even more secure, you can use e.g. suphp plus a strict configuration in your php.ini which disallows functions like exec.
