BBCLone

XML, Perl, Python, and other languages can be discussed here, even if it isn't PHP (We might forgive you).

Moderator: General Moderators

User avatar
Pyrite
Forum Regular
Posts: 769
Joined: Tue Sep 23, 2003 11:07 pm
Location: The Republic of Texas
Contact:

Post by Pyrite »

Why not install them both in the root of your site for testing ...

I honestly have no clue why you need a cgi-bin for php?
Straterra
Forum Regular
Posts: 527
Joined: Mon Nov 24, 2003 8:46 am
Location: Indianapolis, Indiana
Contact:

Post by Straterra »

I had to use that folder for the old web server I used to use. All PHP scripts had to go in there, so I left them all in there when I switched to Apache.
User avatar
Pyrite
Forum Regular
Posts: 769
Joined: Tue Sep 23, 2003 11:07 pm
Location: The Republic of Texas
Contact:

Post by Pyrite »

But php scripts are not CGI's . And frankly, it's a security risk.
Straterra
Forum Regular
Posts: 527
Joined: Mon Nov 24, 2003 8:46 am
Location: Indianapolis, Indiana
Contact:

Post by Straterra »

How is it a security risk?
User avatar
Pyrite
Forum Regular
Posts: 769
Joined: Tue Sep 23, 2003 11:07 pm
Location: The Republic of Texas
Contact:

Post by Pyrite »

You know what, nevermind.

Every suggestion I give you, you return with an argument. Forget it.
Straterra
Forum Regular
Posts: 527
Joined: Mon Nov 24, 2003 8:46 am
Location: Indianapolis, Indiana
Contact:

Post by Straterra »

I'm not trying to argue with you. I am just trying to figure out why that is a security risk and why this script doesn't work. I'm sorry if I have offended you. I am genually interested in why that is a securty problem. Thanks for the help you have given me. If you don't wish to help me anymore, I understand.
redmonkey
Forum Regular
Posts: 836
Joined: Thu Dec 18, 2003 3:58 pm

Post by redmonkey »

PHP scripts can be run as CGIs dependant on how your server is configured.

I am also interested in what the security implications of this would be?
User avatar
Pyrite
Forum Regular
Posts: 769
Joined: Tue Sep 23, 2003 11:07 pm
Location: The Republic of Texas
Contact:

Post by Pyrite »

Well that depends how your server is setup. :lol:
redmonkey
Forum Regular
Posts: 836
Joined: Thu Dec 18, 2003 3:58 pm

Post by redmonkey »

Well if you are going to as loose as that, you could also say that running Apache, mySQL or stuff like phpMyAdmin is a huge security risk dependant oh how you have set it up.

As with running anything on a server, if the server is not setup correctly or the apps are not configured right there could be security implications.

So what sort of setup specifically would cuase running PHP scripts from the cgi-bin to be a security risk?
Post Reply