Re: [cobalt-users] CGI above the /web directory...

[Jay Summers <jay@xxxxxxxxxxxxxxxxxxxx>]

>> I'm trying to understand what the point of doing this is? Is it for
>> security?
>> With the scriptalias can't anyone still browse to
>> www.domain.com/cgi-bin/file.ext  and just get pointed to the
>> /home/sites/site#/cgi-bin/ instead of /home/sites/site#/web/cgi-bin/
>> 
>> I could see doing this with a cgi-bin someplace on the server and a script
>> alias tag in all sites pointing to that for a global cgi-bin or a shared
>> cgi-bin for sites created outside of the GUI.
> 
> 
> How do you get around cgi-wrap permissions problems if you have a shareg
> cgi-bin ?  I understand that if you try to execute a cgi owned by someone
> else then cgiwrap gets a little miffed ? Would be nice to be able to do
> this.

Well, in my reply to Dan's questions, I stated that there are only two users
on our Raq's. So I didn't care about the benefits of CGI-Wrap and I disabled
it.

I know that someone posted a "shared cgi-bin" solution not too long ago. In
it they explained how to setup the script alias and get around the CGI-Wrap
permissions.

I think this may be it except they are using a shared SSL cert along with a
shared cgi-bin.

http://list.cobalt.com/pipermail/cobalt-users/2001-July/048858.html

Another example:

http://ftp.cobaltnet.com/lists/cobalt-users/msg05433.html
http://list.cobalt.com/oldlist/cobalt-users/msg06685.html

HTH,
j