CGI scripts with busybox httpd

[goingnuts]

You can upload files - BUT BINARY FILES GET BROKEN IN THE UPLOAD ... Any fixes for that?!

cgic works quite good
As alternative server thttpd is small and swift.
I have attached bundle of both including some test scripts.

The approach to use cgi/html as configuration tool requires a web browser. Smallest CLI browser I know is retawq (305K static linked). Compared to pure dialog (233K static linked) you could argue that cgi/html ends up using more disk space if used for configuration interface only.
Edit 20200205: Added source for cgic as above link changed content. Added patch to get upload.cgi

[sc0ttman]

More tips:

Server side includes (SSI) with busybox httpd:

https://raw.githubusercontent.com/brgl/ ... ttpd_ssi.c

Compile it with:

Code: Select all

gcc -static httpd_ssi.c -o httpd_ssi

Then in your httpd.conf, put the following:

Code: Select all

*.html:/bin/httpd_ssi
*.htm:/bin/httpd_ssi

You can then use "Server side includes" (SSI) with your busybox httpd

To do so, add the server side includes into your HTML pages like so:

Code: Select all

<p>Some text here</p>

<!--#include file="some-file.html" -->

<p>Some more</p>

[technosaurus]

You may want to goto archive.org for goingnuts most recent post .... did anyone archive the tarballs?

[nosystemdthanks]

ive done cgi scripting with a few languages, including bash.

i abandoned bash very quickly because i decided it was IMPOSSIBLE (or perhaps just far too much effort) to do cgi in bash without exposing the shell to the network (for the local network thats not great, but for a public server thats terrible.)

let me know if you find a way to do bash cgi safely. ill tell you if i can find a way to break it.

[rockedge]

nosystemdthank

is that a challenge? When I win what is in it for me?

I've written cgi scripts in several languages since ARPANET....I can't recall an incident but I'm willing to let you give it a shot.....with some kind of consequence attached for when you fail.

[nosystemdthanks]

nosystemdthank

is that a challenge? When I win what is in it for me?

I've written cgi scripts in several languages since ARPANET....I can't recall an incident but I'm willing to let you give it a shot.....with some kind of consequence attached for when you fail.

obviously if you want to do it that way, we would have to discuss terms beforehand. feel free to pm me of course. if we agree then we can announce terms publicly.

its the way bash does command lines by default and strings as an exception that is the problem here. i really dont think you can make a secure cgi script in only bash-- ive already written a cgi script in bash, you know. id really love to be wrong though.

[Moose On The Loose]

I've been playing with shell based CGI scripts..
[....]
"<br>========================================================<br>"
[..]

You can use <HR> to get a better looking result.

Also:
Within HTML you can:
1) Use base64 to place a small xxx.png or the like in the page
2) Use SVG graphics to make a line drawing
3) Validate form entries with JavaScript
4) Name form entries to make the parse at receiving simpler
5) Use "hidden form entries" to remember state