You are viewing a plain text version of this content. The canonical link for it is here.

Posted to apache-bugdb@apache.org by dg...@hyperreal.com on 1997/04/20 01:13:25 UTC

Changed information for PR general/337

Synopsis: Secure CGI scripts can be run by unauthorized users

State-Changed-From-To: open-closed
State-Changed-By: dgaudet
State-Changed-When: Sat Apr 19 16:13:24 PDT 1997
State-Changed-Why:
Thanks for the note, but as you surmise this is just one of
the many problems with CGIs.  There's not much we can do
about it.  Aside from using something like suexec and setting
the file permissions properly there's very little you can
do to prevent spoofing of your script.

Dean