Re: Security, root and CGI?


We don't bite newbies here... much
	PerlMonks

Re: Security, root and CGI?

by ig (Vicar)

on Jan 29, 2009 at 05:09 UTC ( [id://739765]=note: print w/replies, xml )

Need Help??

in reply to Security, root and CGI?

You could use Kerberos to authenticate your CGI script to your runs-as-root script (and vice-versa if you wanted even more security).

To avoid a secret being recorded in your CGI script or one of its configuration files, you could run the script in a persistent environment (e.g. mod_perl) and have an operator enter the secret on startup.

It should be sufficient to authenticate the user once. Securing communications between your CGI script and your runs-as-root script is a separate problem from user authentication.

Comment on Re: Security, root and CGI?

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://739765]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others contemplating the Monastery: (5)

As of 2024-04-19 23:34 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found