Re: Apache CGI security

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

> Hello Friends.
>
> I need tips to add more security in my Apache Server. Mainly with
> cgi-scripts,
> I use the suEXEC, but, with a cgi-script (perl), I obtain a list of the
> /etc/passwd.
>
> Example:
>
> #!/usr/bin/perl
>
> system("cat /etc/passwd");
>
>
>
> how to solve these problems?
>
> Thank's

chmod 700 /etc/passwd

Mark.

-- 
Mark Watts BSc RHCE MBCS
Senior Systems Engineer
QinetiQ Trusted Information Management
Trusted Solutions and Services Group
GPG Key: http://keyserver.veridis.com:11371/search?q=0x455420ED

Attachment: pgpBsMafRPAmb.pgp
Description: PGP signature

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux