Help - Search - Members - Calendar
Full Version: CAC Site Security Problem
Get Paid Forum - Get Paid Discussion > Webmaster's Corner > General Discussion on Building, Running & Making Money from a Website
lgwong
Mar 17 2002, 04:41 AM
As you have noticed that CAC has release a security update on 3/12/2001. But the update still have a big security problem. Someone may be
able to download the start.lib file from your cgi-bin. It may be impossible to do so on your server, but I think many others can! I suggest to rename it to start.cgi and change so that no one will be able to download it.
jimbaum
Mar 24 2002, 12:47 AM
How would you download the start.lib scipt? I would like to know if that is possible from my server. Please share any info you may have.
lgwong
Mar 24 2002, 01:17 AM
Just try to type http://www.yoursite.com/cgi-bin/start.lib in your browser and see if it will load. I think most servers do not allow this to load, but some do.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2012 Invision Power Services, Inc.