Re: [cgiwrap-users] Is there no relief?
Brought to you by:
nneul
Menu
▾
▴
Re: [cgiwrap-users] Is there no relief?
|
From: Peter M. J. <pe...@cl...> - 2003-02-13 00:51:59
|
On Wed, 12 Feb 2003, Tuc wrote: > > You should do the execution via a mod_rewrite rule or something that > > calls cgiwrap internally, but don't expose that /cgi-bin/cgiwrap path to > > external requests, only internal requests. > > > Ok, not sure HOW to. I have a similar problem in that scripts that generate pages embed links, and the CGI.pm module is returning those links as /cgi-bin/cgiwrap/... It seems as if some environment variable is not being hidden (SCRIPT_NAME?), but I don't know how to avoid the exposure, so I just make sure I protect both possible paths. I'd like to know how to avoid the problem, if anyone has a suggestion. |