httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From r..@ai.mit.edu (Robert S. Thau)
Subject Re: Security interest
Date Fri, 31 May 1996 17:09:39 GMT
        - putting this in the documentation

If people are doing it, then yes, we should probably put up some kind
of a warning... but as I said, there is *nothing* that the server itself
can do to keep people from putting dangerous scripts in their cgi-bin
directory, and an unrestricted perl interpreter is about as dangerous
as these things could possibly get.  (Furthermore, flipping uids can
only make it more so).

rst

Mime
View raw message