1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
/-------------------------------\
| si: cgi-bin Security Warning |
\-------------------------------/
si can be a very helpful program to use on a webserver. Although,
precautions must be made to protect the security of the computer.
Since cgi-bin allows users to send arbitrary data as command-line
options to the programs, buffer overruns or misuse could occur.
If you run si as a cgi-bin program, use si.conf to specify a
configuration to minimize risk. Since the command line will
have precedence over the configuration file, use the
"disable_cmdline" option to prevent malicious users from sending
potentially damaging command-line options to si.
|
