|
|
|
| more useful options | |
| PerlMonks |
comment on |
| ( [id://3333]=superdoc: print w/replies, xml ) | Need Help?? |
|
OF COURSE THIS COULD BE EXPLOITED. Jesus christ I would expect a three year old to be able to come up with that amazing conclusion. But that wasn't the point. The point was that the original poster wanted a script that would take commands via http/cgi and execute them on the local machine. There are hundreds of ways to secure this, I'm supposed to guess which exact one he wants to use?
And you know what? You could make this script perfectly secure without changing one line, simply by placing it in a password protected apache folder. There ya go, perfect security with my script. Is this the best solution? Of course not, as it stands now theres no security. I didn't realize that posting solutions for people who ask questions required writing 300 line programs complete with pod documentation. All this code was meant to do was spur the original poster on to developing his own ideas, it just demonstrates the two basic functions he would need to do so, or atleast one way of doing so. Judging by the number of down votes that node has received I can only guess that people either A) think the original post is so incredibly stupid that he won't realize theres no security in that script or B) want me to write all of the original posts code for him. As it happens I don't think the poster is stupid enough to use this unsecured and I'm not going to write the complete code necessary for every little request. In reply to Re: Re: Re: Remote Administration using Apache mod_perl
by BUU
|
|