physiphile Posted March 14, 2014 Share Posted March 14, 2014 (edited) Hello everyone,I have a php page that refers to /cgi-bin/script. The php page is set to private so only the appropriate user can see it, however, the /cgi-bin/script is still openly accessible.How can I lock down the /cgi-bin/script so only users with permission to access the php page can see /cgi-bin/scriptphysiphile Edited March 14, 2014 by physiphile Quote Link to comment Share on other sites More sharing options...
physiphile Posted March 15, 2014 Author Share Posted March 15, 2014 (edited) Am I thinking about this the right way? I know I can solve this if I submit the form data into two different log in systems. One using my typical php user management system and the other setting user/password file permissions for certain groups. How are other people controlling access to cgi? .htaccess? Edited March 15, 2014 by physiphile Quote Link to comment Share on other sites More sharing options...
objnoob Posted March 15, 2014 Share Posted March 15, 2014 Yup, protect it with Apache. Only allow 127.0.0.1 (localhost) to access it. Quote Link to comment Share on other sites More sharing options...
physiphile Posted March 15, 2014 Author Share Posted March 15, 2014 I considered using apaches basic authentication but I don't want the user login to be in a pop up. I'm using UserCake for my user management and need that log in to also allow access to a cgi-bin script Maybe chmod() can be used to change the permission use the script and then change the permission back Quote Link to comment Share on other sites More sharing options...
objnoob Posted March 22, 2014 Share Posted March 22, 2014 nope, you just accept the request and after validating the user permissions initiate the cgi script. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.