On Thu, 15 Feb 2001 14:55:08 +0000, Lawrence Sweeney said:
> >
> > oooo cool :) I'd still personally recommend cgiwrap for user CGIs tho ...
> >
>
> You'll still need to give apache permission to exec the cgi.
>
I've got it executing CGI in /home/httpd/cgi-bin/ but even with those additions
to httpd.conf (and yes, I did restart it), the script still won't execute. The
browser just displays my code which is not exactly the desired effect!
> It is a good point you make. Using a setuid cgi wrapper, like suEXEC, is
> a _very_ good idea in a multiuser environment. (suEXEC also wraps SSI).
> Otherwise any files written with cgi will be available for inspection,
> modification or deletion, whether by design or accident, by anyone else
> with an account.
> Not always desirable ;-)
>
Well there's only little me here so I'm not too worried about that but I get
the point of it though and I might as well make it secure from unscrupulous
flatmates! I shall look for this suEXEC thing tonight...
Ross
--
Good evening ladies and gentleman, what is your desire?
Hello ladies and gentlemen... explosions and fire.
Good evening ladies and gentlemen, are you prepared to rok?
Hello ladies and gentlemen... let's rok
--------------------------------------------------------------------
http://www.lug.org.uk http://www.linuxportal.co.uk
http://www.linuxjob.co.uk http://www.linuxshop.co.uk
--------------------------------------------------------------------
