Code exposure on www5.us.freebsd.org
Simon L. Nielsen
simon at FreeBSD.org
Wed Sep 24 01:21:06 PDT 2003
On 2003.09.24 01:17:38 -0400, daniel.collins at earthlink.net wrote:
> When I went to the following URL : http://www5.us.freebsd.org/cgi/query-pr-summary.cgi?query
>
> The server returned to me the contents of the script instead of executing it, e.g.
>
> #!/usr/bin/perl -T
> # $FreeBSD: www/en/cgi/query-pr-summary.cgi,v 1.40 2003/09/02 09:46:27 dougb Exp $
[cut]
> I don't know if this is just a transient issue with your server
> configs or if this is something I should have PR'd but I hope I'm
> sending this to the right place and somebody finds it usefl. This seemed
> to work properly on www.freebsd.org, but I haven't tried any of the
> other mirrors.
None of the mirrors are expected to run the cgi scripts, so it's more or
less intentional. The code exposure is not really a problem, since all
the scripts are already available in the public viewable CVS tree.
> BTW, is there an easy way to write that header line with the version
> and date in it? I'd like to use those in my critical files as well.
Just use CVS, and it can automatically update tags each time file file
is updated (when it is committed to it's CVS repository).
--
Simon L. Nielsen
FreeBSD Documentation Team
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-www/attachments/20030924/d7055b00/attachment.bin
More information about the freebsd-www
mailing list