Re: web documentation

To: debian-user@lists.debian.org
Subject: Re: web documentation
From: Michael Stone <mstone@itri.loyola.edu>
Date: Tue, 10 Jun 1997 21:52:31 -0400
Message-id: <[🔎] 19970610215231.36034@beijing.itri.loyola.edu>
In-reply-to: <[🔎] Pine.LNX.3.96.970610152642.1295A-100000@greenbush.greenbush.lan>; from Paul Wade on Tue, Jun 10, 1997 at 03:44:49PM -0400
References: <[🔎] m0wbTTR-00IrY2C@golem.pixar.com> <[🔎] Pine.LNX.3.96.970610152642.1295A-100000@greenbush.greenbush.lan>

Quoting Paul Wade (paulwade@greenbush.com):
> I will also investigate the use of lynx directly with CGI. I hope that you
> are hinting at something I need: If I run lynx as root and execute an
> 'adduser' CGI script that cannot be executed by others, then I will start
> writing a whole buncha sysadmin CGI.

Hmm. You want to have people run a web browser as root and run cgi
scripts with root privilage. Please don't make this a default. I
can't think of any way to make this secure. It would be better
to hack together some kind of front end, or hack lynx into some
kind of dedicated engine. The possibilities for accidents are
too great if you run the scripts directly from lynx.

-- 
   _______   _____  
  /       \ / ___/ Michael Stone, Sysadmin, ITRI
 /  /  /  /_\__\   mstone@itri.loyola.edu 
/__/__/__//____/   PGP: finger or email with "Subject: get pgp key"


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

Follow-Ups:
- Re: web documentation
  - From: Jim Pick <jim@jimpick.com>

References:
- web documentation
  - From: bruce@pixar.com (Bruce Perens)
- Re: web documentation
  - From: Paul Wade <paulwade@greenbush.com>

Prev by Date: Re: rsh or ssh and rdist
Next by Date: Re: xfree86 3.3
Previous by thread: Re: web documentation
Next by thread: Re: web documentation
Index(es):
- Date
- Thread