Hello friends
First of all - I am not very strong in CGI but I was
Just wondering about CGI security !!!!!!!!
In many commercial and/or open source scripts I have remarket the notice:
"Do not remove the above copyright or notice"
Meaning: The header of the script with Authors name.
Some of these CGI-scripts have a Variable that can be changed to contain the "Administors Password"
My question is: Can someone download or read the source of CGI-scripts that are contained in my CGI-bin folder ?????
If Yes - Then they can steal the "Administors Password"
If No - then what the use of the above mentioned Authors Header in the scripts - It only makes them bigger in KB's.
Only wondering about this topic ?????
Regards,
Sanuk
First of all - I am not very strong in CGI but I was
Just wondering about CGI security !!!!!!!!
In many commercial and/or open source scripts I have remarket the notice:
"Do not remove the above copyright or notice"
Meaning: The header of the script with Authors name.
Some of these CGI-scripts have a Variable that can be changed to contain the "Administors Password"
My question is: Can someone download or read the source of CGI-scripts that are contained in my CGI-bin folder ?????
If Yes - Then they can steal the "Administors Password"
If No - then what the use of the above mentioned Authors Header in the scripts - It only makes them bigger in KB's.
Only wondering about this topic ?????
Regards,
Sanuk
Hacking of CGI scripts