September 9th, 2000

I'm really tired...

But, at the same time have this work to finish....

I'm going to work a little more and see how do I go along...
Making some coffee, I just hope it helps!....
  • Current Mood
    sleepy sleepy

Up, again!

Up again and working!

I'm going out in no time to get the morning paper and then back to work, again.
Until I get out, work, what else?

See you all latter!
  • Current Mood
    awake awake

Login....

Still having some questions to be solved about the login method but I might be able to address them with a PERL CGI, though.....

Anyway, the issues that remained about the concurrence are probably solved now by using a Session based data structure.....

See you latter...

Challenge...

How to execute a command that must be executed by root and do it in a safe way without mark if suexec?

(And find it FAST!...)

That's the challenge!.....
  • Current Mood
    nerdy nerdy

Login....

I've found a way.

A security wrapped CGI.
I validate it against invalid REQUEST_METHOD and block also the GET method (so, bye-bye to try using it accessing directly to it through the browser command line!)

And I'll add also e test to see the REFERRER to insure that only coming from one off the applications internal URLs will be accepted!

With these 2 security measures, I guess it will handle the job until I move to a server/client version to create and delete users on a server....

:-))))))
  • Current Mood
    content content

Bingo!!!

It works like expected!

Only with a method of POST and from the URL I specify on the CGI it does it's main action.
Otherwise, it always sends an error page according to the error....

Right, let's move on!
  • Current Mood
    happy happy