Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!news.mira.net.au!inquo!in-news.erinet.com!imci5!imci4!newsfeed.internetmci.com!news.ac.net!news.cais.net!news2.cais.com!news From: ganesh <ganesh@gcol.com> Newsgroups: comp.unix.bsd.bsdi.misc Subject: Re: personal cgi on bsd Date: 10 May 1996 14:52:36 GMT Organization: Capital Area Internet Service, Inc. Lines: 16 Message-ID: <4mvl7k$j2s@news2.cais.com> References: <4msvmh$d0k@ns2.ryerson.ca> NNTP-Posting-Host: ns.gcol.com Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Mailer: Mozilla 1.12 (X11; I; BSD/OS 2.0 i386) To: fwu@acs.ryerson.ca X-URL: news://news2.cais.com/4msvmh$d0k@ns2.ryerson.ca If you allow each user to run cgi scripts that they get to place into their directories, you run into huge security and performance issues on your machine. What is typical is to place all the cgi scripts into a common directory that has restricted access, and to ensure the script isn't doing anything crazy. But if you want to set it up so that each user can place their cgi scripts into their own directories and then have those scripts executed by your web server, then you have to edit the srm.conf file. There should be a line in this file that starts with "ScriptAlias". Each line that begins with this keyword refers to a directory that can contain cgi scripts that the server will be able to execute, if called by the browser. Take care in not creating too many ScriptAlias directories, ganesh.