httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dean Gaudet <>
Subject Re: mirrors and SSIs
Date Tue, 01 Jul 1997 21:57:58 GMT
No this is the wrong answer.  I, for example, refuse to run CGIs or SSIs
that I download automatically from taz... and I trust Brian.  Requiring
mirrors to run SSI or CGI means that a compromise of taz can be a
compromise of every single mirror site.

Alexei you wrote a perl script that we use to get rid of the SSI for
distribution, it should also be running on the live site. 


On Tue, 1 Jul 1997, Alexei Kosut wrote:

> On Tue, 1 Jul 1997, Marc Slemko wrote:
> > The current setup assumes that mirrors have SSIs enabled.  Some don't.
> > How do we resolve that?
> If they don't have SSI enabled, they're not mirrors, and IMHO we should
> remove them from the HTTP mirror list.
> -- Alexei Kosut <>

View raw message