[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Re: SSI Vuln on cobalt

Subject: Re: [cobalt-security] Re: SSI Vuln on cobalt
From: Paul Jacobs <paul@xxxxxxxxxxxxxxxxxx>
Date: Sun, 21 Apr 2002 18:45:10 -0700
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Will our front page websites still work?

At 06:33 PM 4/21/2002, you wrote:

Hi Chris,

> And, as I've pointed out before, all of those cute little checkboxes are
> useless.  If I want to use SSI, all I have to do is put:
>
> AddType text/html .shtml
> AddHandler server-parsed .shtml
>
> in an .htaccess file.

IF your Apache access.conf has ...

<Directory /home/sites/>
AllowOverride All
Options All
</Directory>

... set, then who do you blame? :o) Set it to "AllowOverride None" and all
these fancy .htaccess files in /home/sites/wherever will no longer work.

--

Mit freundlichen Grüßen / With best regards

Michael Stauber
mstauber@xxxxxxxxxxxxxx
Unix/Linux Support Engineer

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security


Paul Jacobs /Senior Network Eng.
Yourwebcentral.com
"Host ANY website "
http://www.yourwebcentral.com
mailto:paul@xxxxxxxxxxxxxxxxxx

Follow-Ups:
- Re: [cobalt-security] Re: SSI Vuln on cobalt
  - From: Michael Stauber

References:
- [cobalt-security] Re: SSI Vuln on cobalt
  - From: Chris Adams
- [cobalt-security] SSI Vuln on cobalt
  - From: Brett Wright
- Re: [cobalt-security] SSI Vuln on cobalt
  - From: Gerald Waugh
- Re: [cobalt-security] Re: SSI Vuln on cobalt
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] SSI Vuln on cobalt
Next by Date: Re: [cobalt-security] Re: SSI Vuln on cobalt
Previous by thread: Re: [cobalt-security] Re: SSI Vuln on cobalt
Next by thread: Re: [cobalt-security] Re: SSI Vuln on cobalt

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index