Re: CGI scripts, security and MySQL

2004-09-03 Thread Chris Devers
On Fri, 3 Sep 2004, Octavian Rasnita wrote: This might be helpful for more users, because a system admin can create automaticly a special dir where the users can put their config files, and "insert" that file in httpd.conf. After that, every user can create its own config file, with any variabl

Re: CGI scripts, security and MySQL

2004-09-03 Thread Octavian Rasnita
IL PROTECTED]>; "michael watson (IAH-C)" <[EMAIL PROTECTED]> Sent: Friday, September 03, 2004 3:56 PM Subject: Re: CGI scripts, security and MySQL -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] <http://learn.perl.org/> <http://learn.perl.org/first-response>

Re: CGI scripts, security and MySQL

2004-09-03 Thread Chris Devers
On Fri, 3 Sep 2004, Octavian Rasnita wrote: No, the environment variables are set a single time at the start (or restart) of the web server. Ok, that's what I thought. So in what way does this help manage a pool of several users? This seems to be a solution in search of some other problem... -- Ch

Re: CGI scripts, security and MySQL

2004-09-03 Thread Octavian Rasnita
- Original Message - From: "Chris Devers" <[EMAIL PROTECTED]> To: "Octavian Rasnita" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]>; "michael watson (IAH-C)" <[EMAIL PROTECTED]> Sent: Friday, September 03, 2004 3:31 PM Subject: Re: CGI script

Re: CGI scripts, security and MySQL

2004-09-03 Thread Chris Devers
On Fri, 3 Sep 2004, Octavian Rasnita wrote: You can put something like this, in httpd.conf file: include ...path_to_file And make the directory where sits that file readable only by the root user. Then, in that file, put something like: SetEnv usr user_name SetEnv pass parolissima Those 2 environme

Re: CGI scripts, security and MySQL

2004-09-03 Thread Octavian Rasnita
uot; <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Friday, September 03, 2004 3:08 PM Subject: Re: CGI scripts, security and MySQL > On Fri, 3 Sep 2004, michael watson (IAH-C) wrote: > > > I need to make this secure such that only users I want can use the > > s

Re: CGI scripts, security and MySQL

2004-09-03 Thread Chris Devers
On Fri, 3 Sep 2004, michael watson (IAH-C) wrote: I need to make this secure such that only users I want can use the system. I want to set up a username and password so that users can log in once at the beginning of a session, carry out their work filling in various forms and writing to the dat

CGI scripts, security and MySQL

2004-09-03 Thread michael watson (IAH-C)
Hi I need to know what is the accepted way of handling the following. I have a MySQL database, and a host of CGI scripts which present forms to the users as web pages, they fill them in and then the data is written to the database. I need to make this secure such that only users I want can use t