class=3D"yiv1833021656plainMail">On Wed, Mar 20, 2013 at 09:38:30AM -0400, =
David Sugar wrote:
> Isn't this what the existing apache uri rewrite =
rules/module is also normally
used=0A for, to do translations between uri paths and cgi arguments? =
> mediawiki can use rewrite rules to normalize document pat=
hs to feed the core
> app. Why do they have/want to do it diffe=
rently than anyone else has?
> Doing it as a kind of redirect just se=
ems bizaare to me. But I have heard
> equally bizzare things re=
cently, like people insisting that file managers
> should now only pr=
esent case insensitive file ordering, when of course the
> native fil=
e system is and always have been case sensitive...
I'd have to look =
at the specifics of what your refering to, but while in
the Pharmacy, th=
e essential difference would be regular expression
mapping wbich would b=
e a fairly large security hole for a standard
setup, or any set up with =
usage of an .htaccess file. It would allow
for anyone to inject an=
ything at all into cgi as a get statement.
> Ruben Safir wrote:
> > This is an example o=
f something that is just a PIA to churn through,
> > partly becaus=
e these idiots are splicing an ISII crapolla fix into
> > their "d=
ocumentations", and secondly because assume your sitting on
> > so=
meone elses webserver, rather than your own, and thirdly because
gt; they believe that your apache set up has a rather rare and somewhat
> > insecure module installed for RedirectMatchUrl, and then ...
> > their last instruction fails to identify what the he=
ll the code is
> > for! Is it httpd.conf? Is it perl c=
ode to drop into the application?
> > The who concep=
t is to redirect a static uri like
> > ollow" target=3D"_blank"
> to their cgi engine automaticaly, to be translated to look
t; internally as something like this:
> > m/cgi-bin/yabb.pl?some_numbers_as_arguments">http://www.myuri.com/cgi-bin/y=
t; It would be just simpler to drop down to mod_perl and add it as a
; > script into the apache calls under the URI of
> > and=
be done with it....
> > The whole discussion of sym=
bolic links to directories is just confussing
> > the issue. =
There doesn't need to be any real directory when the server
> > i=
s picking up that uri and handling it entirely within the
> > engine.
> > Ruben