OT: user CGI-BIN directories
To execute the cgi scripts thru web/HTML forms we had to put them in the common cgi-bin directory. But is there a way to have these scripts in a user's home directory and still call them thru web/HTML forms? TIA -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: Alroy Mascranghe INET: [EMAIL PROTECTED] Fat City Network Services-- (858) 538-5051 FAX: (858) 538-5051 San Diego, California-- Public Internet access / Mailing Lists To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing).
Re: OT: user CGI-BIN directories
With Apache it is fairly easy but why you would do it is beyond me as they will then run anything in those directories and that is how you mess with a web server by allowing users to freely run cgi scripts. This is why most free websites don't give you access to CGI stuff or other server side capabilities. Most of there sites would have been hacked by now with this enabled. You need to modify the a Location section Read up the Apache doco on this as it will explain how a user can use this to create exploits on the server Cheers -- = Peter McLarty E-mail: [EMAIL PROTECTED] Technical ConsultantWWW: http://www.mincom.com APAC Technical Services Phone: +61 (0)7 3303 3461 Brisbane, AustraliaMobile: +61 (0)402 094 238 Facsimile: +61 (0)7 3303 3048 = A great pleasure in life is doing what people say you cannot do. - Walter Bagehot (1826-1877 British Economist) = Mincom The People, The Experience, The Vision = This transmission is for the intended addressee only and is confidential information. If you have received this transmission in error, please delete it and notify the sender. The contents of this e-mail are the opinion of the writer only and are not endorsed by the Mincom Group of companies unless expressly stated otherwise. Alroy Mascranghe [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 14-08-2002 05:13 PM Please respond to ORACLE-L To: Multiple recipients of list ORACLE-L [EMAIL PROTECTED] cc: Fax to: Subject:OT: user CGI-BIN directories To execute the cgi scripts thru web/HTML forms we had to put them in the common cgi-bin directory. But is there a way to have these scripts in a user's home directory and still call them thru web/HTML forms? TIA -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: Alroy Mascranghe INET: [EMAIL PROTECTED] Fat City Network Services-- (858) 538-5051 FAX: (858) 538-5051 San Diego, California-- Public Internet access / Mailing Lists To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing). -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: INET: [EMAIL PROTECTED] Fat City Network Services-- (858) 538-5051 FAX: (858) 538-5051 San Diego, California-- Public Internet access / Mailing Lists To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing).
Re: OT: user CGI-BIN directories
User's home directory (better special subdirectory - only for those scripts) should be registered in the config file of webserver as a directory where cgi scripts are running. For example if You look in the Apache config file You will find such info along with my examples # ScriptAlias: This controls which directories contain server scripts. # ScriptAliases are essentially the same as Aliases, except that # documents in the realname directory are treated as applications and # run by the server when requested rather than as documents sent to the client. # The same rules about trailing / apply to ScriptAlias directives as to # Alias. # ScriptAlias /cgi-bin/ /usr/local/apache/cgi-bin/ ScriptAlias /pasts/ /usr/home/mysql/php/perl/ For other webservers it should be a little different, but not much, maybe they have some GUI interface, too. Gints Plivna IT Sistçmas, Meríeïa 13, LV1050 Rîga http://www.itsystems.lv/gints/ Alroy Mascranghe To: Multiple recipients of list ORACLE-L [EMAIL PROTECTED] alroy@informaticcc: s.lkSubject: OT: user CGI-BIN directories Sent by: [EMAIL PROTECTED] 2002.08.14 10:13 Please respond to ORACLE-L To execute the cgi scripts thru web/HTML forms we had to put them in the common cgi-bin directory. But is there a way to have these scripts in a user's home directory and still call them thru web/HTML forms? TIA -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: Alroy Mascranghe INET: [EMAIL PROTECTED] Fat City Network Services-- (858) 538-5051 FAX: (858) 538-5051 San Diego, California-- Public Internet access / Mailing Lists To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing). -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: INET: [EMAIL PROTECTED] Fat City Network Services-- (858) 538-5051 FAX: (858) 538-5051 San Diego, California-- Public Internet access / Mailing Lists To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing).
Re: OT: user CGI-BIN directories
...is there a way to have these scripts in a user's home directory and still call them thru web/HTML forms? Have you considered the security implications of this? Jared Alroy Mascranghe [EMAIL PROTECTED] Sent by: [EMAIL PROTECTED] 08/14/2002 12:13 AM Please respond to ORACLE-L To: Multiple recipients of list ORACLE-L [EMAIL PROTECTED] cc: Subject:OT: user CGI-BIN directories To execute the cgi scripts thru web/HTML forms we had to put them in the common cgi-bin directory. But is there a way to have these scripts in a user's home directory and still call them thru web/HTML forms? TIA -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: INET: [EMAIL PROTECTED] Fat City Network Services-- (858) 538-5051 FAX: (858) 538-5051 San Diego, California-- Public Internet access / Mailing Lists To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing).