[Mapserver-users] More beginner questions
Doug Cates
doug@moximedia.com
Mon, 3 Mar 2003 10:28:11 -0800
You wrote:
1) whether I use GET or POST, too much information exists in the url or
resulting web page about the actual location in the server of critical
files, such as the map file. I consider this a security problem.
Is there a mechanism to hide this (cookie, session id, etc)?
The best way to do this is to create an executable CGI wrapper program like:
#! /bin/sh
# File: /var/www/cgi-bin/ms_world
#
MS_MAPFILE=/home/mapfiles/world.map
export MS_MAPFILE
/var/www/cgi-bin/mapserv
.... The call the wrapper (without the mapfile) instead of mapserv.
Doug
--
Doug Cates
Moxi Media Inc.
757 - 1641 Lonsdale Avenue,
Vancouver, BC, Canada V7M 2J5
Phone: 604-984-8109
Fax: 604-608-4764
E-Mail: doug@moximedia.com
Web: www.moximedia.com
_______________________________________________
Mapserver-users mailing list
Mapserver-users@lists.gis.umn.edu
http://lists.gis.umn.edu/mailman/listinfo/mapserver-users