Ensure it's abundently clear that these scripts may be bad news

with stupid-assed clients which contravine their prime directives,
such as content-type, or do not harm humans.

Flaws such as utf-7 decoding ensure that even txt->html transforms
are insufficient.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@692727 13f79535-47bb-0310-9956-ffa450edef68

diff --git a/docs/cgi-examples/printenv b/docs/cgi-examples/printenv
index e4c2140bcff5e382ee37b6df99971b641d4e5987..f815a7e501966fe31c2d3011c5e0b99d2abd17ce 100644 (file)
--- a/docs/cgi-examples/printenv
+++ b/docs/cgi-examples/printenv
@@ -1,4 +1,13 @@
-#!/usr/local/bin/perl
+#
+
+# To permit this cgi, replace # on the first line above with the
+# appropriate #!/path/to/perl shebang, and set this script executable
+# with chmod 755.
+#
+# Note that it is subject to cross site scripting attacks on MS IE
+# and any other browser which fails to honor RFC2616, so never use
+# it in a live server environment, it is provided only for testing.
+
 ##
 ##  printenv -- demo CGI program which just prints its environment
 ##

diff --git a/docs/cgi-examples/test-cgi b/docs/cgi-examples/test-cgi
index e27f8575235c1dd7c4e124b6ec666140303b2efd..d92e0eccf8383da0672e9f6739305cf1a6cf5e93 100644 (file)
--- a/docs/cgi-examples/test-cgi
+++ b/docs/cgi-examples/test-cgi
@@ -1,4 +1,12 @@
-#!/bin/sh
+#
+
+# To permit this cgi, replace # on the first line above with the
+# appropriate #!/path/to/sh shebang, and set this script executable
+# with chmod 755.
+#
+# Note that it is subject to cross site scripting attacks on MS IE
+# and any other browser which fails to honor RFC2616, so never use
+# it in a live server environment, it is provided only for testing.
 
 # disable filename globbing
 set -f