PICK A PAGE AND Home Site Guide Site Search Bulletin Board Virtual Greeting Cards -The Stuff You Want- Free CGI Script Archive Free Graphics Archive Free Coordinated Page Graphics -Getting Started on the Web- Clueless? For the Newbie! Domain Name Lookup Recommended Hosting Solutions Free Hosting -The Fun Tutorials- Lots of HTML Tricks and Tutorials HTML Tag Guide JavaScript Tricks and Tutorials Navigation Tricks Image Maps Tutorial -CGI, SSI and Unix Tutorials- SSI: Server Side Includes Forms Tutorial CGI Simple Tutorial Your First CGI Perl Script Banner Rotation Squawk: Recent News UNIX Guru Tutorial -Web Page Design Tutorials- Design Basics Most Important Part of your Page Photo Composition Tutorials MIDI Music on Your Pages All about COLOR THE SAFE Colors The Skinny on Fat Graphics Advanced Design Examples ASCII Chart -Managing Your Web Site- BNB on the APACHE Server Introduction to the Secure Server How to Promote Your Web Site Site Management Site Security Password Protection on Directories Site Diagnostics Script Troubleshooting -Resource Links- Offsite Resource Links Good Books The Tools You Need -All the Other Stuff- Newletter Back Issues Reader's Links Bird Droppings: Letters Kudos / Awards BNB FAQ Guestbook

I have noticed that since I have added INCLUDES to my .htaccess file, or to my access.srm, that 'exec cmd=' works. This is sort of scary from a security standpoint. What should I do??? To do this, you MUST have access to the master server configuration files. If you are unable to edit these files, ask your system administrator to do it for you. If you do not have access to the server configuration files, you can add this line to your .htaccess file. IncludesNoExec Edit the file access.conf file and do the following: Locate the container with your directory where the INCLUDES is located and add the word: IncludesNoExec Restart the server.

Find or Give Help on the BBS
Home Top E-Mail
If it looks great, it's by Christine

---