httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rob Hartill <>
Subject Re: mod_cgissi
Date Mon, 04 Nov 1996 18:57:17 GMT
Brandon Long wrote:

>> They could always use NCSA httpd. I hear they have it.
>Heh.  Yeah.  #define CGI_SSI_HACK, which was necessary for SHTTP (where there
>are SSI directives for including the server keys and the like, which
>can't be reasonably assumed that to be included in a CGI script.  It involves
>one byte socket reads again though, so I highly suggest against it.  As
>for the security hole feature, that falls into the shoot yourself in the
>foot category.

The trick is to explain to people the dangers of the gun they're holding
before they shoot their feet. How does NCSA explain the dangers ?

Rob Hartill.       Internet Movie Database Ltd.  

View raw message