Warn about potential of program to unplannedly reveal the content

of various CGI files. PR: ports/25272 Submitted by: Ariff Abdullah <skywizard@time.net.my> Approved by: clement (mentor)
author: lawrance <lawrance@FreeBSD.org> 2005-04-17 22:53:20 +0800
committer: lawrance <lawrance@FreeBSD.org> 2005-04-17 22:53:20 +0800
commit: a06cfd00d9d735f6f9f1eba342b201f99e390d67 (patch)
tree: 5a7d9eda92531700c5461bfc887814aaa0d1d7b2
parent: d298543dd902ecf55d990168b3cd3b9c6f268ee0 (diff)
download: freebsd-ports-gnome-a06cfd00d9d735f6f9f1eba342b201f99e390d67.tar.gz
freebsd-ports-gnome-a06cfd00d9d735f6f9f1eba342b201f99e390d67.tar.zst
freebsd-ports-gnome-a06cfd00d9d735f6f9f1eba342b201f99e390d67.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/lang/eperl/pkg-message b/lang/eperl/pkg-message
index 6b30697c33d4..070a9299878d 100644
--- a/lang/eperl/pkg-message
+++ b/lang/eperl/pkg-message
@@ -10,3 +10,12 @@ This program is distributed in the hope that it will be useful, but WITHOUT
 ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
 FITNESS FOR A PARTICULAR PURPOSE.  See either the Artistic License or the
 GNU General Public License for more details.
+
+*** WARNING ***
+
+Using eperl in CGI or NHP-CGI mode with a webserver will expose any files
+having extension .html, .phtml, .ephtml, .epl, .pl, or .cgi under the
+document root.
+
+Any files matching those extensions that do not contain eperl script
+may be served to a client verbatim on request.
author	lawrance <lawrance@FreeBSD.org>	2005-04-17 22:53:20 +0800
committer	lawrance <lawrance@FreeBSD.org>	2005-04-17 22:53:20 +0800
commit	a06cfd00d9d735f6f9f1eba342b201f99e390d67 (patch)
tree	5a7d9eda92531700c5461bfc887814aaa0d1d7b2
parent	d298543dd902ecf55d990168b3cd3b9c6f268ee0 (diff)
download	freebsd-ports-gnome-a06cfd00d9d735f6f9f1eba342b201f99e390d67.tar.gz freebsd-ports-gnome-a06cfd00d9d735f6f9f1eba342b201f99e390d67.tar.zst freebsd-ports-gnome-a06cfd00d9d735f6f9f1eba342b201f99e390d67.zip