Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Blog | Linux Links | Bling | About BLU

BLU Discuss list archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Famous last words: "surely this CGI script is safe"

I've composed this CGI shell script as an example of backlink-tracing:


echo "Content-type: text/plain"

# If the linking page isn't in the referers file, add it.
grep --quiet $HTTP_REFERER referers || echo $HTTP_REFERER >> referers

echo "Links to this page have been followed from the following URLs:"
cat referers

Other than filling up my partition with spurious URLs, is there any
damage that a malicious outsider could do with this script?

"Your labour is only worth something to the extent that it saves someone
else having to do it."  --Paul Foley
// seth gordon // sethg at // //

BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!

Boston Linux & Unix /