Hi,

Can anyone think of a danger in installing the eruby binary in
/cgi-bin?  

Since Ruby normally can read standard input for the program, this
would seem to be a bad thing --- you could point a POST request to
/cgi-bin/eruby directly and have full run of the show.  It looks like
eruby_main.c will simply try to open a filename of "" if no script
name is provided, but I just wanted to make sure that this was a safe thing
to do...

Thanks,

/\ndy

--
Andrew Hunt, The Pragmatic Programmers, LLC.
Innovative Object-Oriented Software Development
web:   http://www.pragmaticprogrammer.com   email: andy / pragmaticprogrammer.com
--
Our New Book: "The Pragmatic Programmer" Published by Addison-Wesley Oct 1999
              (see www.pragmaticprogrammer.com/ppbook)
--