Beefy Boxes and Bandwidth Generously Provided by pair Networks
"be consistent"

Re: Security, root and CGI?

by ig (Vicar)
on Jan 29, 2009 at 05:09 UTC ( #739765=note: print w/ replies, xml ) Need Help??

in reply to Security, root and CGI?

You could use Kerberos to authenticate your CGI script to your runs-as-root script (and vice-versa if you wanted even more security).

To avoid a secret being recorded in your CGI script or one of its configuration files, you could run the script in a persistent environment (e.g. mod_perl) and have an operator enter the secret on startup.

It should be sufficient to authenticate the user once. Securing communications between your CGI script and your runs-as-root script is a separate problem from user authentication.

Comment on Re: Security, root and CGI?

Log In?

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://739765]
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others surveying the Monastery: (5)
As of 2015-11-28 17:46 GMT
Find Nodes?
    Voting Booth?

    What would be the most significant thing to happen if a rope (or wire) tied the Earth and the Moon together?

    Results (743 votes), past polls