Controlling access to cgi program?

physiphile · March 14, 2014

Hello everyone,

I have a php page that refers to /cgi-bin/script. The php page is set to private so only the appropriate user can see it, however, the /cgi-bin/script is still openly accessible.

How can I lock down the /cgi-bin/script so only users with permission to access the php page can see /cgi-bin/script

physiphile

physiphile · March 15, 2014

Am I thinking about this the right way? I know I can solve this if I submit the form data into two different log in systems. One using my typical php user management system and the other setting user/password file permissions for certain groups.

How are other people controlling access to cgi? .htaccess?

objnoob · March 15, 2014

Yup, protect it with Apache. Only allow 127.0.0.1 (localhost) to access it.

physiphile · March 15, 2014

I considered using apaches basic authentication but I don't want the user login to be in a pop up. I'm using UserCake for my user management and need that log in to also allow access to a cgi-bin script

Maybe chmod() can be used to change the permission use the script and then change the permission back

objnoob · March 22, 2014

nope, you just accept the request and after validating the user permissions initiate the cgi script.

Sign In

Controlling access to cgi program?

Recommended Posts

physiphile

Link to comment

Share on other sites

physiphile

Link to comment

Share on other sites

objnoob

Link to comment

Share on other sites

physiphile

Link to comment

Share on other sites

objnoob

Link to comment

Share on other sites

Archived

Browse

Activity

Important Information