[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] protecting text files in my cg-bin directory from prying eyes

Subject: Re: [cobalt-users] protecting text files in my cg-bin directory from prying eyes
From: jens@xxxxxxxxxxxxxxxxxxxx (Jens Kristian Søgaard)
Date: Mon Oct 23 12:28:01 2000
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

"Brian Baggett/Santa Teresa/IBM" <bbaggett@xxxxxxxxxx> writes:

> guess the file name.  For example, I have several log and data files
> written to by my cgi-bin scripts that live in my cgi-bin directory.  Some
> 
> What is the easiest way to fix this security hole?

Create a cgi-data directory somewhere not in your document-root (for
example /home/sites/siteXX/cgi-data/) and move all your sensitive
datafiles there.

Another possibility is, to use .htaccess files to deny download of
specific files (or extensions). However the solution I described first
is the best.

-- 
Jens Kristian Søgaard, Mermaid Consulting I/S,
jens@xxxxxxxxxxxxxxxxxxxx,
http://www.mermaidconsulting.com/

References:
- [cobalt-users] protecting text files in my cg-bin directory from prying eyes
  - From: Brian Baggett/Santa Teresa/IBM

Prev by Date: Re: [cobalt-users] URGENT: After deleting virtual host, won't let me administer my other sites!
Next by Date: Re: [cobalt-users] RAQ2 Problem with MEM
Previous by thread: Re: [cobalt-users] protecting text files in my cg-bin directory from prying eyes
Next by thread: Re: [cobalt-users] protecting text files in my cg-bin directory from prying eyes

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index