[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] OT? Mail to a script/program

Subject: Re: [cobalt-users] OT? Mail to a script/program
From: flash22@xxxxxxx
Date: Thu Jan 25 10:02:11 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On Tue, 23 Jan 2001, rob@xxxxxxxx wrote:

> > >> We have set this alias entry
> > >> (alias: "|/home/sites/site41/web/cgi-bin/alias.cgi")
> > >> to activate a script when receive email, but Sendmail answers 
> > >> "Cannot mail directly to files"
> > >>If I try from a shell: perl/home/sites/site41/web/cgi-bin/alias.cgi
> > >>it works.!
> 
> 
> Zeffie wrote:
> 
> >who owns the file and what group is it in....
> 
> Its ownership is root.root
> 
> --------------------
> 
> elmer@xxxxxxxxxxxxxx wrote:
> 
> >that doing a chmod +x on the script might end your problem
> 
> Done, but not did the trick...
> 
> >Then again, do you trust user 41 enough enough to all but hand them 
> >root access to your server?
> 
> But the cgi script is owned by root so I think user 41 can do nothing,
> or not?
> 

how about

mv cgi-bin junk
mkdir cgi-bin
cp hackerscripthinggy alias.cgi
 -/

remember just owning a file to root does not in itself make it secure, the
path muct be protected all the way from the root also...

References:
- Re: [cobalt-users] OT? Mail to a script/program
  - From: rob@xxxxxxxx

Prev by Date: [cobalt-users] installing php4 on raq3 problem
Next by Date: [cobalt-users] All mail forwarded to Exchange internal Mail Hub
Previous by thread: Re: [cobalt-users] OT? Mail to a script/program
Next by thread: Re: [cobalt-users] OT? Mail to a script/program

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index