[4637] in WWW Security List Archive
RE: SHTML on Netscape under NT
daemon@ATHENA.MIT.EDU (Benjamin Camp)
Mon Mar 3 19:11:06 1997
Date: Mon, 3 Mar 1997 15:02:57 -0600 (CST)
From: Benjamin Camp <benc@geocel.com>
To: "Phillip M. Hallam-Baker" <hallam@ai.mit.edu>
cc: "www-security@ns2.rutgers.edu" <www-security@ns2.rutgers.edu>
In-Reply-To: <01BC27EC.584A4A00@crecy.ai.mit.edu>
Errors-To: owner-www-security@ns2.rutgers.edu
And who are you, Laura Lemay? Though that is the HTML comment form,
anyone who's ever worked with an HTTP server (and not just FrontPage)
knows what SSI is. I guess I'm just missing your point? If you don't
like the way it works, maybe you should talk to NCSA.. they wrote the
standard.
Thanks for your help,
Ben
On Mon, 3 Mar 1997, Phillip M. Hallam-Baker wrote:
> I'm puzzled by this.
>
> <!-- --> is a html comment form. There should never be a need to
> wedge tags into comments because one can extend the Tag
> set.
>
> Any HTML spec this broken deserves not to work.
>
> Phill
>
>
> -----Original Message-----
> From: Benjamin Camp [SMTP:benc@geocel.com]
> Sent: Monday, March 03, 1997 4:01 AM
> To: www-security@ns2.rutgers.edu
> Subject: SHTML on Netscape under NT
>
> Purveyor gives you the ability to:
>
> <!--#exec exe="execfile" -->
>
> I've tried for several hours and have not been able to find any similar
> functionality or even get <!--#exec cmd="..."> to work at all. In the
> SSI specs, cmd= uses /bin/sh .. well.. I'm trying to do it on NT.
>
> If there is an equivilant, does anyone know any special security concerns
> regarding NT and SSI?
>
> Ben Camp
>
>
>
