From 63808043a0eef3c5ba3dc28829bf3f74f2cb87a9 Mon Sep 17 00:00:00 2001 From: Sam Lawrance Date: Sun, 17 Apr 2005 14:53:20 +0000 Subject: [PATCH] Warn about potential of program to unplannedly reveal the content of various CGI files. PR: ports/25272 Submitted by: Ariff Abdullah Approved by: clement (mentor) --- lang/eperl/pkg-message | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/lang/eperl/pkg-message b/lang/eperl/pkg-message index 6b30697c33d4..070a9299878d 100644 --- a/lang/eperl/pkg-message +++ b/lang/eperl/pkg-message @@ -10,3 +10,12 @@ This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See either the Artistic License or the GNU General Public License for more details. + +*** WARNING *** + +Using eperl in CGI or NHP-CGI mode with a webserver will expose any files +having extension .html, .phtml, .ephtml, .epl, .pl, or .cgi under the +document root. + +Any files matching those extensions that do not contain eperl script +may be served to a client verbatim on request.