Syntax: CGICommandArgs On|Off
Default: CGICommandArgs On
Context: directory, .htaccess
Compatibility: Available in Apache 1.3.24 and later.
Way back when the internet was a safer, more naive place, it was convenient for the server to take a query string that did not contain an '=' sign and to parse and pass it to a CGI program as command line args. For example, <IsIndex> generated searches often work in this way. The default behavior in Apache is to maintain this behavior for backwards compatibility, although it is generally regarded as unsafe practice today. Most CGI programs do not take command line parameters, but among those that do, many are unaware of this method of passing arguments and are therefore vulnerable to malicious clients passing unsafe material in this way. Setting CGICommandArgs Off is recommended to protect such scripts with little loss in functionality.
AcceptMutex directive for Apache
htaccess at Windows
Confirm box with 2 location
About Pico at Linux
Doctypes for XHTML docs
AccessConfig directive for Apache
AddDefaultCharset directive for Apache
Redirect with htaccess
|© 2001 - 2018 Tatamedia Solusindo ||