Go Premium for a chance to win a PS4. Enter to Win


Linux-server and Discussion group

Posted on 1999-01-16
Medium Priority
Last Modified: 2010-03-18
My Internet operator doesn't have in his webserver the extensions needed to
run Discussion groups (made by FrontPage97 Discussion group wizard). The
server is using Linux.

The operator hesitates in getting these extensions. He says that it might be
possible that the use of Discussion groups in his server could cause harm to
the server. According to him it could cause security problems or poblems in
proper functionig of the server programs (e.g. the server could even go

What do you think or know about these risks. Are they possible risks and if
so how probable do you think they are and in what kind of situations they
are posible?

If there aren't any real risks how could I make my operato sure about this?
Question by:jolehmus

Expert Comment

ID: 1588130
they are pulling you leg... they just don't want to provide that service

Expert Comment

ID: 1588131
These frontpage web extensions for Apache (I assume he's running Apache) are something of a mystery.  I searched around for them a while for someone else, and found little reference to them, not even an explanation of what they do, although I did find the source code for them via freshmeat (http://freshmeat.net - search for "frontpage").  I sort of applaud him on one hand for making sure he doesn't compromise the security of his network by just plugging in software he's not familar with.  I don't know if he's right or wrong as I've never used the package itself.  Probably the only way to convince him is to set it up and test it extensively yourself, as he probably does not have the time or the inclination to do so.  If you can ensure him that they don't pose a security risk, he'd probably thank you for taking the time to test something which allows him to offer greater functionality.

If he lets you run cgi scripts, there's tons of them (including messaging facilities, e.g. "wwwboard") at Matt's Scripts Archives (http://www.worldwidemart.com/scripts/).  These may serve the same purpose you're trying to accomplish via the use of Frontpage server extensions.

LVL 19

Accepted Solution

xterm earned 200 total points
ID: 1588132
I run FP98 on all my linux/apache webservers & they don't pose
any security problems.  They are a pain in the ass to set up &
not quite as functional as say an IIS server running the same,
but they work nonetheless.  Send your operator to the Unix FP
site (http://www.rtr.com/fpsupport) to see for himself.

Expert Comment

ID: 1588133
the fp extensions for linux _are_ a major security bug if installed following the docs, because they install many setuid root cgi scripts.

Featured Post

Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

824 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question