Re: [cgiwrap-users] A begginer's question about "security checks"

[Ali G. <gha...@gm...>]

allright, correct me if I'm wrong: I can't run a perl/script which executes
"/sbin/*" stuff like "/sbin/iptables" using this wrapper, unless I change
the owner of all "cgi-bin/*" scripts to "root".


On Mon, Aug 22, 2011 at 5:47 PM, Nathan Neulinger <nn...@ne...>wrote:

> Mainly stuff like whether the script is setuid, or has improper permissions
> (i.e. 777) or isn't owned by the same user as the account it would be
> running as.
>
> -- Nathan
>
> On 08/19/2011 08:55 PM, Ali Ghanavatian wrote:
>
>> Hello world!
>> I just found cgiwrapper, I was reading this page. at the end of first
>> paragraph it says "...In addition, several
>> security checks are performed on the script, which will not be executed if
>> any checks fail. "
>>
>> I counld'nt find anything about those "security checks". i'd appreciate it
>> if you guys help me with a link or any details.
>>
>> --
>>  Sincerely
>> A. Ghanavatian <http://www.google.com/**profiles/ghanavatian.ali<http://www.google.com/profiles/ghanavatian.ali>
>> >
>>
>>
>>
>> ------------------------------**------------------------------**
>> ------------------
>> Get a FREE DOWNLOAD! and learn more about uberSVN rich system,
>> user administration capabilities and model configuration. Take
>> the hassle out of deploying and managing Subversion and the
>> tools developers use with it. http://p.sf.net/sfu/wandisco-**d2d-2<http://p.sf.net/sfu/wandisco-d2d-2>
>>
>>
>>
>> ______________________________**_________________
>> cgiwrap-users mailing list
>> cgiwrap-users@lists.**sourceforge.net<cgi...@li...>
>> https://lists.sourceforge.net/**lists/listinfo/cgiwrap-users<https://lists.sourceforge.net/lists/listinfo/cgiwrap-users>
>>
>
> --
> ------------------------------**------------------------------
> Nathan Neulinger                       nn...@ne...
> Neulinger Consulting                   (573) 612-1412
>



-- 
 Sincerely
A. Ghanavatian <http://www.google.com/profiles/ghanavatian.ali>