Harry Putnam wrote:
> This might ought to be another thread... but I wondered...in the case
> where cgi is allowed in any directory.. how can they be kept from
> being seen?
Web servers have a configuration file that maps a http:// location onto
a directory. Anything in it or its sub-directories is accessible via a
browser but only directories with this mapping are accessible. To
prevent exposure of sensitive data, such as a DB password, a stub CGI is
put in the directory that calls another script in an inaccessible
directory, that is, inaccessible from a browser, not the server.
>
> I have just always included an index.html.. so that someone trying to
> see inside the directory... just gets the index.html.
>
> I suppose a miscreant could just keep trying different filenames and
> get lucky. Or is there some systematic way to discover whats in a
> directory with an index.html present?
>
>
perl -le '$c="a";for(1..100){print ++$c}'
Generating sequential names in Perl is easy.
--
Just my 0.00000002 million dollars worth,
Shawn
Programming is as much about organization and communication
as it is about coding.
I like Perl; it's the only language where you can bless your
thingy.
--
To unsubscribe, e-mail: beginners-unsubscr...@perl.org
For additional commands, e-mail: beginners-h...@perl.org
http://learn.perl.org/
