httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From (Robert S. Thau)
Subject Re: Security interest
Date Fri, 31 May 1996 17:09:39 GMT
        - putting this in the documentation

If people are doing it, then yes, we should probably put up some kind
of a warning... but as I said, there is *nothing* that the server itself
can do to keep people from putting dangerous scripts in their cgi-bin
directory, and an unrestricted perl interpreter is about as dangerous
as these things could possibly get.  (Furthermore, flipping uids can
only make it more so).


View raw message