RE: RE: do not use this script in a public environment!


Perl Monk, Perl Meditation
	PerlMonks

RE: RE: do not use this script in a public environment!

by antihec (Sexton)

on Jun 03, 2000 at 01:30 UTC ( [id://16136]=note: print w/replies, xml )

Need Help??

in reply to RE: do not use this script in a public environment!
in thread CGI- based calendar

In a current posting from SANS (System Administration, Networking, and Security) they state "Vulnerable CGI programs and application extensions (...)" as the second most critical internet security risk.

One of the remedies they offer is - surprise - "Write safer CGI programs", and they recommend the following links:

http://www-4.ibm.com/software/developer/library/secure-cgi/
http://www.cert.org/tech_tips/cgi_metacharacters.html
http://www.cert.org/advisories/CA-97.24.Count_cgi.html

As of now, I didn't check those myself, but maybe someone finds them useful?!

-- 
bash$ :(){ :|:&};:
[download]

Comment on RE: RE: do not use this script in a public environment! Download Code

In Section Code Catacombs

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://16136]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others learning in the Monastery: (5)

As of 2024-04-23 20:46 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found