Re: [cobalt-users] C libraries for CGI

[Jeff Lasman <jblists@xxxxxxxxxxxxx>]

At 06:43 AM 1/31/00  WebMost wrote:

> > It's quite easy to hide a perl-cgi program's source from the web.  Or do
> > you mean he wants to hide the source from you <smile>?
> >
> > Jeff
>
> Some customer concerns are irrational. Given.
> But he who pays the piper calls the tune.
> And the ruling principle of technical neophytes seems to be FUD: Fear,
> Uncertainty and Disinformation.
> (FUD for Thawte, as someopne aptly put it.)
> In those instances where calm, rational explanation do not prevail, you just
> do what the guy pays for. Absolutely no sense in making sense where there is
> no sense.
>
> Bottom line: He does not want certain processes to be legible to someone
> with telnet or FTP access. This concern stems from certain haphazard
> arrangements on a server he was on previously.

This customer's concerns sounds pretty reasonable to me.  He doesn't want 
you to see what he's doing in code running on your server.

We do NOT allow anyone to run code on our server unless we know what it 
does.  If you can't figure out why, you should when you read Bruce Kiley's 
earlier post today, re: RAQ2 - HELP!  HTTPD Won't Start, missing "home" 
directory?"

I would NEVER let a customer run compiled code as a CGI on my 
system.  Possibly because I understand how insecure Linux is.

Let this customer go; you'll be happier in the long run.

My honest opinion.

Jeff

--
Jeff Lasman, nobaloney.net
<jblists@xxxxxxxxxxxxx>
<www.nobaloney.net>, <www.mailtraqna.com>, <www.email-lists.com>