[Previous] [Next] [Index]
[Thread]
Security with CGI problem...
Dear All,
I encounter some problem in the User Authentication for WWW.
I allow users to change their own passwords with my CGI script. I will
face a problem that people may change the password file with other CGI
programs through "web master process".
In order to reduce the hazard that my own password file accessed by
other "illegal" CGI programs, I should make the access to my own CGI
program. What should I do in order to restrict the access without a
second server?
Also, I know that I can do the restriction with a second server. What
should I do in this method?
Regard,
--
S.W. Cheung
email: swcheung@hkimd.cig.mot.com
phone: (852) 2966-3774