FAQ  |  Search  |  Register  |  Profile  |  Log in to check your private messages  |  Log in
Is it possible not to have .exe's treated as CGI-files?

 
Post new topic   Reply to topic    Aprelium Forum Index -> FastCGI/CGI
View previous topic :: View next topic  
Author Message
speedisen
-


Joined: 30 Jul 2003
Posts: 3
PostPosted: Sun Aug 10, 2003 8:33 pm    Post subject: Is it possible not to have .exe's treated as CGI-files? Reply with quote
Hi, i run a webserver where some users got accounts.. the thing is, i use PHP for all my pages, so i haveto specify the CGI Path as "/", and therefor, all .exe's in my root-dir aswell as the user-dirs gets treated as CGI:s and started locally on this computer (and the other users get a ERROR 500 message instead of being able to download the .exe as they want to). This is to me a big security-risc since people could upload a trojan to their useraccount, then run it, and i would be infected without even having downloaded a file :/ so is there anything i can do about that..?
Back to top View user's profile Send private message
aprelium
-


Joined: 22 Mar 2002
Posts: 6800
PostPosted: Mon Aug 11, 2003 12:08 pm    Post subject: Re: Is it possible not to have .exe's treated as CGI-files? Reply with quote
speedisen wrote:
Hi, i run a webserver where some users got accounts.. the thing is, i use PHP for all my pages, so i haveto specify the CGI Path as "/", and therefor, all .exe's in my root-dir aswell as the user-dirs gets treated as CGI:s and started locally on this computer (and the other users get a ERROR 500 message instead of being able to download the .exe as they want to). This is to me a big security-risc since people could upload a trojan to their useraccount, then run it, and i would be infected without even having downloaded a file :/ so is there anything i can do about that..?

If you can't separate the .exe file and all other PHP files, we recommend using a small download script that will send the .exe files to your clients without having these .exe files in your web space.
_________________
Support Team
Aprelium - http://www.aprelium.com
Back to top View user's profile Send private message Send e-mail
Display posts from previous:   
Post new topic   Reply to topic    Aprelium Forum Index -> FastCGI/CGI All times are GMT + 1 Hour
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB phpBB Group