You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@httpd.apache.org by Rob Hartill <ha...@hyperreal.com> on 1995/09/15 21:28:36 UTC

New version of the CGI security patch (fwd)

Forwarded message:
> From leitner@prz.tu-berlin.de  Thu Sep 14 19:55:24 1995
> From: leitner@prz.tu-berlin.de
> Message-Id: <19...@tubkom.prz.tu-berlin.de>
> Subject: New version of the CGI security patch
> To: apache-bugs@mail.apache.org
> Date: Fri, 15 Sep 1995 04:53:46 +0100 (MESZ)
> Mime-Version: 1.0
> Content-Type: text/plain; charset=ISO-8859-1
> Content-Transfer-Encoding: 8bit
> Content-Length: 535
> 
> Hi !
> 
> Yep, you told me you won't add new features until 1.0, I know.
> 
> But I sent you my patch and found a serious problem with it.  Now there
> is a fixed version, this time it's for 0.8.13 (not 0.8.11) and the
> server was actually tested on two hosts ;)
> 
> I put it at
> 
>   http://www.prz.tu-berlin.de/~leitner/apache.html
> 
> (You might want to save that URL somewhere in case your users feel the
> need to have own CGI bins and they bother you too much).
> 
> Please tell me when 1.0 is pending and you're thinking about adding this
> patch.
> 
> Felix
> 
>