Date: Tue, 18 Jul 2000 13:31:55 +0200 From: Gabriel Ambuehl <gabriel_ambuehl@buz.ch> To: freebsd-isp@freebsd.org Subject: Secure CGI execution Message-ID: <18810445910.20000718133155@buz.ch>
next in thread | raw e-mail | index | archive | help
Hello, we're are trying to get the CGI scripts of our users in some kind of sandbox (mainly a chroot or jail environment). During that effort, I found the sbox cgi-wrapper (http://stein.cshl.org/WWW/software/sbox) which would basically do what we need (suid to the owner of the script and then a chroot to limit the script to the users homedirs). However, while the wrapper compiles without any problems and can be executed as regular CGI script (which then return an error that one should specify a real CGI script to execute) we can't get it to execute any CGI scripts. If I try to open url/cgi-bin/sbox/test.cgi, Apache states the well known "Premature End of Scriptheader" message. If I open usr/test.cgi, everything works as expected... Has anyone got a working installation of sbox or a similar application under FreeBSD 4? Making the whole thing transparent to the users will be a totally different cup of coffee. I think this is best done with some mod_rewrite magics. Best regards, Gabriel To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?18810445910.20000718133155>