Bug #777

lighty stops to proceed cgi programs at a sudden time

Added by Anonymous 859 days ago. Updated 224 days ago.

Status:Fixed Start:
Priority:Urgent Due date:
Assigned to:- % Done:

0%
Category:mod_cgi
Target version:-
Pending:

No

 Resolution:

fixed

Description

$HTTPurl =~ "^/c/proxy.cgi" {
cgi.assign = ( ".pl" => "/usr/bin/perl",
".cgi" => "/usr/bin/perl" )
}

usually it works like a charme http://www.rackit.de/dns.html
but at a sudden point lighty does not execute the cgi anymore and
DELIVERS the program-file itself!!! i would even call this a security
issue since that way its logical possible, that an attacker may get
program-code which includes information - maybe even database
connectivity accounts. however, at THIS particular cgi i have no real
sensitive information included, but i have not a good feeling to know
that lighty does programs as-is at some point...

anyone has observed something similar?

ofcourse debug mode is enabled but there are no errors! if it happens
you got only an entry in the access_log enlists usual delivering of a
file as-is.

anyone?

Simon

-- simonlange

History

04/24/2008 09:59 PM - stbuehler

  • Status changed from New to Fixed
  • Resolution set to fixed
  1. static-file.exclude-extensions
  2. i guess your user hit the process limit and fork failed; that problem is fixed.
  3. if not, use strace to find out why the spawning failed.

Also available in: Atom PDF