httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Behlendorf <>
Subject Re: WWW Form Bug Report: "SetEnv in .htaccess" on HPUX
Date Sun, 30 Jun 1996 22:19:48 GMT
On Sat, 29 Jun 1996, Ben Laurie wrote:
> > Could you elaborate?  I'm having trouble visualizing the potential
> > problems.
> Well, the main point is that allowing users unrestricted access to environment
> variables is tantamount to giving them a login. Since more or less anything is
> possible from a login this is a Bad Thing. Of course, if the users already have
> logins, it doesn't matter. But if they don't...

Hmm, okay, I see your point.  If there was a way to make it an
"Options"-controllable behavior I suppose that would be best...



View raw message