Hello,
I have a general question about allowing users to create their own cgi
scripts. At this time a user must submit a script/program to the
administrator which will only execute from apache's cgi-bin. The idea
is that it will be checked for security holes before it is given
permission to excecute. It is unrealistic for me to do all this
checking. Also it is unacceptable for users during script
development. As a sulution I am looking at some sort of cgi wrapper.
There are several available, but I am really looking at sbox. Also
this server is for the Universitie's Math/CS department so I want to
keep it as open as possible without security problems.
That is my situation. Here are some questions.
Has anyone had any good/bad experiences with using wrappers?
What do you do with common cgi scripts? Do they still reside in
apache's cgi-bin?
What user and group name should the common cgi-scrips have?
Also I am seriusly considering setting up one of servers to handle
mail, web and other outside access, while another one will be to
handle homework.
Any thoughts appreciated.
--
Thanks,
George
dowdingg_at_saturn.math.uaa.alaska.edu
http://saturn.math.uaa.alaska.edu/~dowdingg
Received on Sun Jun 06 1999 - 22:01:21 NZST