httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jim Jagielski <...@jaguNET.com>
Subject Re: Weak documentation on Module mod_include (fwd)
Date Tue, 27 May 1997 22:46:57 GMT
Rob Hartill wrote:
> 
> 
> This looks worrying. Anyone setup to do a quick test of this ?
> 
> 
> ---------- Forwarded message ----------
> Date: Tue, 27 May 1997 21:02:47 +0200
> From: Peder Langlo <pederl@hpbbse.bbn.hp.com>
> To: apache-bugs@apache.org
> Subject: Weak documentation on Module mod_include
> 
> Just for your information.
> 
> In http://www.apache.org/docs/mod/mod_include.html:
> 
> exec 
>      The exec command executes a given shell command or CGI script. The
>      IncludesNOEXEC Option disables this command completely. The valid
> attributes
>      are: 
> .
> .
> .
>      cmd 
>          The server will execute the given string using /bin/sh. The
> include
>          variables are available to the command. 
> 
> --
> I can make cmd be executed in the document directory by saying "./cmd"
> but not "cmd". Also, it will not be run in /bin/sh if cmd has the
> "#!path-to-shell" in the first line.
> 
> Running apache 1.1.

  ^^^^^^^^^^^^^^^^^^^


Geez :/

-- 
====================================================================
      Jim Jagielski            |       jaguNET Access Services
     jim@jaguNET.com           |       http://www.jaguNET.com/
                  "Not the Craw... the CRAW!"

Mime
View raw message