Apache server: cgi-bin

Apache server: cgi-bin

Post by Hsinche Chen » Wed, 16 Jun 1999 04:00:00



This may be a dumb question, but I'm completely stumped.  I'm running the
latest Apache server under SuSE Linux 6.0.  I have a compiled c program that
processes POST-ed data from a form residing in the cgi-bin directory.  The
cgi-bin program fails to run correctly (error 500), and I think it has to do
with the permissions.  The cgi-bin program tries to create a temporary file
to mail, which is where it stops.  The user:group permissions are set to be
the same as the user:group listed in httpd.conf.

Any ideas what I'm doing wrong?

Thanks,
Jacob

 
 
 

Apache server: cgi-bin

Post by Joshua Sliv » Thu, 17 Jun 1999 04:00:00



> This may be a dumb question, but I'm completely stumped.  I'm running the
> latest Apache server under SuSE Linux 6.0.  I have a compiled c program that
> processes POST-ed data from a form residing in the cgi-bin directory.  The
> cgi-bin program fails to run correctly (error 500), and I think it has to do
> with the permissions.  The cgi-bin program tries to create a temporary file
> to mail, which is where it stops.  The user:group permissions are set to be
> the same as the user:group listed in httpd.conf.

Check the error log, and possibly use the ScriptLog to find out what
is going on.  I assume that this user:group has the appropriate
permissions to create the file in question???

--
Joshua Slive

http://finance.commerce.ubc.ca/~slive/

 
 
 

1. /cgi-bin/phf /cgi-bin/test-cgi /cgi-bin/handler

I've been seeing a number of attacks of this sort recently
from various sites in the http logs.  The time correlation
between the logs on various hosts suggests that the attacker
was scanning sequentially upward in IP addresses.  Since all
tcp and udp packets to ports below 1024 except for http,
smtp, and ident are filtered out for most, including the
attacking, sites, I'm not seeing anything else in the logs.

209.61.73.47 - - [04/Jul/1998:07:19:27 -0500] "GET /cgi-bin/phf" 404 -
209.61.73.47 - - [04/Jul/1998:07:19:28 -0500] "GET /cgi-bin/test-cgi" 404 -
209.61.73.47 - - [04/Jul/1998:07:19:28 -0500] "GET /cgi-bin/handler" 404 -

Is this a signature of some known attackware?  If so, what
other attacks accompany these http probes?

--

2. mount as user

3. cgi-bin/view-source?cgi-bin/view-source

4. presummably trouble with FDDI interface

5. apache server with cgi-bin access

6. WD90C33 chipset

7. apache web server cgi-bin directories in user dirs, but how?

8. PnP modem

9. question on apache, proxy server, & cgi-bin

10. apache: give /home/mailman/cgi-bin permissions to run cgi-scripts.

11. Cannot execute CGI programs in /cgi-bin with Apache

12. apache: cgi script not in cgi-bin

13. cgi-bin (C bin) hangs under Linux