Hello, Thanks for the info. I am aware of the security problems around this. The methods described in the manual were not working so I decided to try this on an internal server to find out why.
I am using apache 1.3.23 and php 4.3.3 on linux with a 2.4 kernel. I can't use the php module because a third party application requires php to be available via CGI. The original apache config file settings work fine on one server but don't on this server. I am trying to iron out why the difference. The working server is Redhat and the non-working server is Mandrake. The original config files and builds use proper security techniques to prevent php from redirecting outside the server document path. I'll follow the links that you offered. Peter > > A clue-by-four about security. If that was to work you would be opening > your server up to any kind of attack an attacker could thinking of. > We're talking *wide* open. > > 1) Why can't you use the PHP module? > > 2) What version of Apache are you using? > > If Apache 1.3, the manual[1] gives clear instructions on how to set this > up... > Stuart > > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
