Syntax: CGICommandArgs On|Off
Default: CGICommandArgs On
Context: directory, .htaccess
Compatibility: Available in Apache 1.3.24 and later.
Way back when the internet was a safer, more naive place, it was convenient for the server to take a query string that did not contain an '=' sign and to parse and pass it to a CGI program as command line args. For example, <IsIndex> generated searches often work in this way. The default behavior in Apache is to maintain this behavior for backwards compatibility, although it is generally regarded as unsafe practice today. Most CGI programs do not take command line parameters, but among those that do, many are unaware of this method of passing arguments and are therefore vulnerable to malicious clients passing unsafe material in this way. Setting CGICommandArgs Off is recommended to protect such scripts with little loss in functionality.
AddDefaultCharset directive for Apache
Prevent htaccess From Hack 2
Doctypes for XHTML docs
htaccess at Windows
Passing value from child window to parent
Count how many days
Sendmail using PHP
AllowOverride directive for Apache
|© 2001 - 2018 Tatamedia Solusindo ||