RE: [cgiwrap-users] cgiwrap and PHP
Brought to you by:
nneul
Menu
▾
▴
RE: [cgiwrap-users] cgiwrap and PHP
|
From: Neulinger, N. <nn...@um...> - 2005-03-17 17:05:07
|
Most of those facilities are designed for sites not using something like cgiwrap or suexec. But maybe others here will have more to say. -- Nathan ------------------------------------------------------------ Nathan Neulinger EMail: nn...@um... University of Missouri - Rolla Phone: (573) 341-6679 UMR Information Technology Fax: (573) 341-4216 =20 > -----Original Message----- > From: Gary Wilson [mailto:gw...@pl...]=20 > Sent: Thursday, March 17, 2005 11:03 AM > To: Neulinger, Nathan > Cc: cgi...@li... > Subject: RE: [cgiwrap-users] cgiwrap and PHP >=20 >=20 > But surely that just disables the security checks which I=20 > wanted to keep > in? >=20 > Is that the only way? >=20 >=20 >=20 > On Thu, 2005-03-17 at 09:52 -0600, Neulinger, Nathan wrote: > > Rebuild the PHP interpreter without force-cgi-redirect. > >=20 > > -- Nathan > >=20 > > ------------------------------------------------------------ > > Nathan Neulinger EMail: nn...@um... > > University of Missouri - Rolla Phone: (573) 341-6679 > > UMR Information Technology Fax: (573) 341-4216 > > =20 > >=20 > > > -----Original Message----- > > > From: cgi...@li...=20 > > > [mailto:cgi...@li...] On Behalf=20 > > > Of Gary Wilson > > > Sent: Thursday, March 17, 2005 9:21 AM > > > To: cgi...@li... > > > Subject: [cgiwrap-users] cgiwrap and PHP > > >=20 > > > Hi all! > > >=20 > > > I am facing a problem which on the face of it could have=20 > more than one > > > solution, I wish to use PHP in CGI mode (not CLI mode)=20 > because PHP in > > > CGI mode offers a few features/checks to make it a little=20 > more secure > > > than offering access to the CLI version. However, when=20 > using it in > > > conjunction with cgiwrap, the following appears: > > >=20 > > > __quote__ > > > Security Alert! The PHP CGI cannot be accessed directly.=20 > > >=20 > > > This PHP CGI binary was compiled with force-cgi-redirect=20 > enabled. This > > > means that a page will only be served up if the=20 > REDIRECT_STATUS CGI > > > variable is set, e.g. via an Apache Action directive. > > >=20 > > > For more information as to why this behaviour exists, see=20 > the manual > > > page for CGI security. > > >=20 > > > For more information about changing this behaviour or=20 > re-enabling this > > > webserver, consult the installation file that came with this > > > distribution, or visit the manual page. > > > __end quote___ > > >=20 > > > I can solve this by going to the CLI version, or by trying to > > > incorporate an Action directive in my virtualhost before my=20 > > > rewrite rules (investigating this idea next), but I was=20 > wondering what > > > are others' experiences of PHP and cgiwrap? What is the "best" > > > solution to this (meaning most secure)? > > >=20 > > > Many thanks > > >=20 > > > GW > > >=20 > > >=20 > > >=20 > > > ------------------------------------------------------- > > > SF email is sponsored by - The IT Product Guide > > > Read honest & candid reviews on hundreds of IT Products from=20 > > > real users. > > > Discover which products truly live up to the hype. Start=20 > reading now. > > > http://ads.osdn.com/?ad_id=3D6595&alloc_id=3D14396&op=3Dclick > > > _______________________________________________ > > > cgiwrap-users mailing list > > > cgi...@li... > > > https://lists.sourceforge.net/lists/listinfo/cgiwrap-users > > >=20 > > >=20 > >=20 >=20 >=20 >=20 |
