RE: [cgiwrap-users] RE: cgi-wrap security issue
Brought to you by:
nneul
Menu
▾
▴
RE: [cgiwrap-users] RE: cgi-wrap security issue
|
From: Neulinger, N. R. <nn...@um...> - 2001-02-15 15:32:45
|
Yeah, you can add your own cgiwrap, just edit some of the files in /etc/httpd/. Pretty simple. I don't think they use cgiwrap for any serverwide stuff other than scripts installed by users. -- Nathan > -----Original Message----- > From: Ian Fantom [mailto:ia...@mi...] > Sent: Thursday, February 15, 2001 8:41 AM > To: cgi...@li... > Subject: Re: [cgiwrap-users] RE: cgi-wrap security issue > > > James Moore wrote: > > > Be careful. Cobalt's official policy of treating customers like > > assholes requires that they void your warranty if you replace or add > > any software from other sources. > > ... and their warrenty support consists of saying to > reinstall the OS to > factory default, which wipes your disc, without an obvious way of > reinstalling all the configurations that Cobalt software has > control of. > So we had to do all by setting it all up from scratch again. > > We didn't have access to the source code either, but it > seemed to be the > Cobalt cgiwrap that was causing the problem. > > Is it easy to bypass the Cobalt cgiwrap and install my own > handler name > with a different version of cgiwrap. I can access cgi-bin outside the > web area with the cgi-script handler, so perhaps I could just install > another handler and not touch Cobalt's cgiwrap? > > Regards, > > Ian. > > _______________________________________________ > cgiwrap-users mailing list > cgi...@li... > http://lists.sourceforge.net/lists/listinfo/cgiwrap-users > |
