Apache CGI security

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Apache CGI security
From: "Carlos Eduardo Maiolino" <maiolinux@xxxxxxxxx>
Date: Mon, 16 Jul 2007 09:24:57 -0300
Reply-to: users@xxxxxxxxxxxxxxxx

Hello Friends.

I need tips to add more security in my Apache Server. Mainly with cgi-scripts,
I use the suEXEC, but, with a cgi-script (perl), I obtain a list of the /etc/passwd.

Example:

#!/usr/bin/perl

system("cat /etc/passwd");

how to solve these problems?

Thank's

Follow-Ups:
- RE: Apache CGI security / Reverse problem: POST works, GET doesn't
  - From: Jeff Murch
- Re: Apache CGI security
  - From: Mark Watts

Prev by Date: RE: Client denied by server config
Next by Date: Re: Apache CGI security
Previous by thread: mod_cache intermittently corrupting PDF's or storing incomplete version of file.
Next by thread: Re: Apache CGI security
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]