Resumen de Managing network security with cfengine, part 3
The security of the Web is a slightly paradoxical business. On the one hand, we make a system for distributing files to anyone without the need for passwords, and on the other hand we are interested in limiting who gets that information and who can change what. If you want Web privacy you have to exclude the possibility of running untrusted CGI scripts -CGI programs you did not write yourself- since CGI programs can circumvent any server's security. This is due to a fundamental weakness in the way that a WWW server works: it make user CGI scripts incompatible with the idea of private WWW areas.
