Apache configuration: Exclude Perl-execution for a single directory

Wednesday, November 20. 2013

My attempt to distribute the Huawei B593 exploit-tool failed yesterday. Apparently people could not download the source-code and got a HTTP/500 error instead.

The reason for the failure was, that the Apache HTTPd actually executed the Perl-script as CGI-script. Naturally it failed miserably due to missing dependencies. Also the error output was not very CGI-compliant and Apache chose to dis-like it and gave grievance as output. In the meantime, my server actually has runnable Perl-scripts, for example the DNS-tester. The problem now was: how to disable the script-execution for a single directory and allow it for the virtual host otherwise?

Solution:
With Google I found somebody asking something similar for ColdFusion (who uses that nowadays?), and adapted it to my needs. I created .htaccess with following content:

<Files ~ (\.pl$)>
    SetHandler text/html
</Files>

Ta daa! It does the trick! It ignores the global setting, and processes the Perl-code as regular HTML making the download possible.

by Jari Turkia in Software at 11:01 | Comments (4) | Share in LinkedIn

Comments
Display comments as (Linear | Threaded)

Hi jari, we have the same model of router but mine was locked to a custom firmware of an isp provider. My problem is i dont know the admin password (although i know the user access of this modem) Is it possible if i gain root access I may be able to change the admin password? Can you help me please?
Comments (2)
#1 jayrulez on 2014-01-08 07:25 (Reply)
Sure I can help. Which Apache version is it?
Comments (2)
#1.1 Jari Turkia on 2014-01-08 08:46 (Reply)
how will i know? im noob on this linux/unix thing.. what will i run? how?
Comments (2)
#2 jayrulez on 2014-01-08 10:03 (Reply)
Ok. You're commenting a blog entry about "Apache configuration: Exclude Perl-execution for a single directory". Your question should involve some details about your environment and any details about the problem you're experiencing currently. I know my mind-reading skills are really poor and I am working really hard on that. Until I master that skill, to communicate with me you need to use written words with some relevance to anything I wrote in the article.
Comments (2)
#2.1 Jari Turkia on 2014-01-08 11:39 (Reply)

Add Comment

E-Mail addresses will not be displayed and will only be used for E-Mail notifications.
Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.
 
Submitted comments will be subject to moderation before being displayed.
 

Calendar

Back December '23
Mon Tue Wed Thu Fri Sat Sun
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28 29 30 31

Quicksearch

Archives

Categories

RSS feeds of this Blog

Blog Administration

Open login screen

Powered by

Parts of this serendipity template are by Abdussamad Abdurrazzaq and Jari Turkia. License