cgi

cgi

Post by Mike Mitchel » Wed, 10 Sep 1997 04:00:00



We are running 5.04, using the Netscape Fast track server 2.1 .  When
trying to run a cgi program provided by a vendor, it just bombs with an
error message about misconfiguration.

Is there any configuration parameter that needs to be set to enable cgi
programs to run?  The vendor seems to think this is the case but I can't
see anything in the documenation or Internet configuration parameters to
back that up.

 
 
 

1. /cgi-bin/phf /cgi-bin/test-cgi /cgi-bin/handler

I've been seeing a number of attacks of this sort recently
from various sites in the http logs.  The time correlation
between the logs on various hosts suggests that the attacker
was scanning sequentially upward in IP addresses.  Since all
tcp and udp packets to ports below 1024 except for http,
smtp, and ident are filtered out for most, including the
attacking, sites, I'm not seeing anything else in the logs.

209.61.73.47 - - [04/Jul/1998:07:19:27 -0500] "GET /cgi-bin/phf" 404 -
209.61.73.47 - - [04/Jul/1998:07:19:28 -0500] "GET /cgi-bin/test-cgi" 404 -
209.61.73.47 - - [04/Jul/1998:07:19:28 -0500] "GET /cgi-bin/handler" 404 -

Is this a signature of some known attackware?  If so, what
other attacks accompany these http probes?

--

2. 2.6 x86 font graphics problem (Motif?)

3. Apache/CGI: How to toggle an ErrorDocument from a CGI ?

4. Second Ethernet card not Recognized

5. announce: cgi++ v2.0: a c++ library for cgi script handling

6. isdn setup problems

7. cgi.gif or cgi.jpg

8. Ultra 2 ethernet interface

9. cgi-bin and cgi file security

10. CGI won't execute - cgi pointing into htdocs directory

11. Perl CGI script gets CGI params as ARGV arguments under Apache2

12. Q:CGI/1.1:400 Status to Client from CGI/HTTPD

13. cgi-bin/view-source?cgi-bin/view-source