[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] protecting text files in my cg-bin directory from prying eyes

Subject: RE: [cobalt-users] protecting text files in my cg-bin directory from prying eyes
From: "Dan Kriwitsky" <dan@xxxxxxxxxxxxx>
Date: Fri Oct 20 10:29:01 2000
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> I have searched the archives and found lots of posts on directory browsing
> and how to disable it.  I have a more specific question.  I have added
> index.html files to all my directories to keep people from being able to
> get directory listings via there web browsers.  However, they can still
> view any non-executable files via their browser if they happen to know or
> guess the file name.  For example, I have several log and data files
> written to by my cgi-bin scripts that live in my cgi-bin directory.  Some
> of these files contain sensitive information and I do not want 
> people to be
> able to read the files via their browsers.
> 
> What is the easiest way to fix this security hole?
> 
Move the logs to /home/sites/site#/new_dir
Since they're "above" the web directory, they can't be browsed.

-- 
Dan Kriwitsky

References:
- [cobalt-users] protecting text files in my cg-bin directory from prying eyes
  - From: Brian Baggett/Santa Teresa/IBM

Prev by Date: [cobalt-users] protecting text files in my cg-bin directory from prying eyes
Next by Date: Re: [cobalt-users] How do I actually Restart ProFTPd service?
Previous by thread: [cobalt-users] protecting text files in my cg-bin directory from prying eyes
Next by thread: Re: [cobalt-users] protecting text files in my cg-bin directory from prying eyes

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index