Tim Spriggs <[EMAIL PROTECTED]> writes: > Of course, this doesn't completely solve the problem, right? As long as > the webserver can see it and other people can run stuff as the webserver > (like a quick perl/cgi script)
Right, that's why you don't allow the second one, or if you do, you run those programs with a different set of credentials than the server using a hacked suexec. -- Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/> _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
