[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] [Webmin] was Are Raq's here to stay? (opinionswanted)
- Subject: Re: [cobalt-users] [Webmin] was Are Raq's here to stay? (opinionswanted)
- From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
- Date: Sat Nov 24 19:37:00 2001
- Organization: nobaloney.net
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
"Huston, Virgil H." wrote:
> Biggest problems have been with various cgi scripts, from cgiemail
> to bbs scripts.
And you blame problems with scripts on the RaQ?
> Problems with these are cgiwrap errors and permission
> errors.
Oh, now I see, you blame the problems with scripts on the fact that the
RaQ runs cgiwrap.
Personally, while I don't use cgiwrap on my personal linux boxes, I do
believe it's the only way to secure (even partially) a webhost server
serving multiple sites. I can't see running a hosting company without
it. I guess that's because I understand the dangers of running untested
cgi applications, and the best way to prevent those dangers. You should
read a book or two on Linux/Unix security and perhaps all the stuff you
can find about CGIs and about cgiwrap.
If a program doesn't run under cgiwrap even when you've uploaded it
properly, then the program's author needs to address the problem, not
Sun/Cobalt.
imho.
Jeff
--
Jeff Lasman <jblists@xxxxxxxxxxxxx>
Linux and Cobalt/Sun/RaQ Consulting
nobaloney.net
P. O. Box 52672, Riverside, CA 92517
voice: (909) 778-9980 * fax: (702) 548-9484