[102247] in RedHat Linux List
Re: Internal HTTP ERROR.
daemon@ATHENA.MIT.EDU (Hans von Lengerke)
Wed Dec 2 05:56:21 1998
Date: Wed, 2 Dec 1998 10:54:07 +0000
From: Hans von Lengerke <hans@peritas.com>
To: redhat-list@redhat.com
cc: aromes@microtec.net
In-Reply-To: <3.0.1.32.19981201183441.0070d6a4@pop.microtec.net>
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
On Tue, 1 Dec 1998 aromes@microtec.net wrote:
1. use CGI.pm or CGI_lite which you can get from CPAN (www.perl.com)
2. Read the CGI FAQ which you can find on the same site
3. This is VERY important: Your script poses a serious security risk. Read
the CGI Security FAQ on the same site.
This is the security hole in your script:
> open (MAIL, "|/usr/lib/sendmail $to") ||
> die "<p>Error: Couldn't execute sendmail.\n";
Although your $to variable is actually useless (it is never initialised) I
guess that you intend to use the hidden input field (which has a name
value missing as well) to determine the email address. Imagine what
happens when someone enters 'his_own@email.address < /etc/passwd' in the
hidden 'to' field.
Take the three points above serious.
Hans
--
Hans von Lengerke
ICL Training Services
(+44) 01753 721042
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com http://archive.redhat.com
To unsubscribe: mail redhat-list-request@redhat.com with
"unsubscribe" as the Subject.
