Lexa Software: Apache-Talk@lists.lexa.ru archive

		Apache-Talk @lexa.ru
		Inet-Admins @info.east.ru
		Filmscanners @halftone.co.uk
		Security-alerts @yandex-team.ru
		nginx-ru @sysoev.ru

СТАТЬИ

ПЕРСОНАЛЬНОЕ

ПРОГРАММЫ

ПИШИТЕ
ПИСЬМА

АРХИВ :: Apache-Talk

Apache-Talk mailing list archive (apache-talk@lists.lexa.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

=?KOI8-R?Q?Re[3]:_[apache-talk]_=D0=D2=CF=C2=CC=C5=CD=C1_c_?=

To: apache-talk@lists.lexa.ru
Subject: Re[3]: [apache-talk] проблема c [an error occurred while processing the directive]
From: Andrew Kopeyko <akopeyko@opten.cnt.ru>
Date: Mon, 18 Jan 1999 12:34:37 +0300
Comments: Sender has elected to use 8-bit data in this message. If problems arise, refer to postmaster at sender's site.
In-reply-to: <9632.990116@sansanych.com>
Organization: Opten Ltd


> День добрый, Konstantin!
> 
> Ниже следует ответ на Ваше письмо от 15.01.1999, 14:31:
> 
> 
> KT> Может, все проще - mod_include.c:
> 
> KT> static int find_file(request_rec *r, const char *directive, const char 
>*tag,
> KT>                      char *tag_val, struct stat *finfo, const char *error)
> KT> {
> KT>     char *to_send;
> 
> KT>     if (!strcmp(tag, "file")) {
> KT>         ap_getparents(tag_val);    /* get rid of any nasties */
> KT>         to_send = ap_make_full_path(r->pool, "./", tag_val);
> 
> KT> Изувечить его, и все будет OK?
> 
> 
> Урраа... Спасибо Константину. Ткнул меня носом в то место, в котором
> затаилась проблема.
> 

Сан Саныч, теперь ты получаешь другую проблему - security :-((

Что делать, если кто-либо из авторов страниц напишет
<!--#include file=/etc/passwd -->
???????


----------------------
Best regards,
Andrew Kopeyko

akopeyko@opten.cnt.ru
=============================================================================
=               Apache-Talk@lists.lexa.ru mailing list                      =
Mail "unsubscribe apache-talk" to majordomo@lists.lexa.ru if you want to quit.
=       Archive avaliable at http://www.lexa.ru/apache-talk                 =

Follow-Ups:
- Re: [apache-talk] проблема c 
  - From: Serg Shikov
- Re[3]: [apache-talk] проблема c 
  - From: Artem Chuprina
- Re[4]: _[apache-talk]_проблема_c_
  - From: San Sanych Timofeev
- [apache-talk] =?koi8-r?Q?Re=3A_=3D=3FKOI8-R=3FQ=3FRe=5B3=5D=3A=5F=5Bapache-talk=5D=5F?==?koi8-r?Q?=3DD0=3DD2=3DCF=3DC2=3DCC=3DC5=3DCD=3DC1=5Fc=5F=3C!--#flastmod?==?koi8-r?Q?=5Ffile=3D3D=3D22=2E=2E=2E=2E=2E=2E=2E=3D22--=3E=3F=3D?=
  - From: Victor B Wagner
- [apache-talk] =?koi8-r?B?UmVbNF06IF9bYXBhY2hlLXRhbGtdX9DSz8LMxc3BX2Nf?=  =?koi8-r?B??=
  - From: Serge V. Panchencko

References:
- Re[2]: [apache-talk] проблема c 
  - From: San Sanych Timofeev

Prev by Date: [apache-talk] =?koi8-r?Q?Re=3A_=5Bapache-talk=5D_=3D=3Fkoi8-r=3FQ=3FRe=3D3A=5F=3D5B?==?koi8-r?Q?apache-talk=3D5D=5FCVS=3D2C=5FRCS=5F=3DC_9=5F=3DD4=3D2E=3DD0?==?koi8-r?Q?=3D2E=3F=3D?=
Next by Date: [apache-talk] =?koi8-r?B?UmVbNF06IF9bYXBhY2hlLXRhbGtdX9DSz8LMxc3BX2Nf?=  =?koi8-r?B??=
Previous by thread: Re[2]: [apache-talk] проблема c 
Next by thread: [apache-talk] =?koi8-r?B?UmVbNF06IF9bYXBhY2hlLXRhbGtdX9DSz8LMxc3BX2Nf?=  =?koi8-r?B??=
Index(es):
- Date
- Thread