mirror of
https://github.com/collectd/collectd.git
synced 2026-02-09 04:09:15 +08:00
e085aa8777
When using collection3 as a CGI, the following error is sent to logs repeatedly. FastCGI sent in stderr: "CGI::param called in list context from /usr/share/doc/collectd-core/examples/collection3/lib/Collectd/Graph/Common.pm line 529, this can lead to vulnerabilities. See the warning in "Fetching the value or values of a single named parameter" at /usr/share/perl5/CGI.pm line 412" This is caused inappropriate usage of param(), it should be handled as a scalar or should be treated by multi_param() explicitly. Signed-off-by: Kentaro Hayashi <kenhys@gmail.com>
collection3 - Web frontend for collectd ========================================= http://collectd.org/ About ----- collection3 is a graphing front-end for the RRD files created by and filled with collectd. It is written in Perl and should be run as an CGI-script. Graphs are generated on-the-fly, so no cron job or similar is necessary. Layout ------ The files used by collection3 are organized in a typical UNIX fashion: The configuration resides in etc/, executable scripts are in bin/, supplementary Perl modules are in lib/ and static data for displaying the web page are in share/. All files in all subdirectories except bin/ should NOT be executable. Ideally, the webserver should not serve them either. Consider using `.htaccess' files or other means to configure the web server to deny access to these directories. Dependencies ------------ collection3 depends on the following Perl modules not included in the Perl distribution itself: * Config::General * Regexp::Common * HTML::Entities * RRDs Copyright and License --------------------- Copyright (C) 2008 Florian octo Forster <octo at verplant.org> collection3 is provided under the terms of the GNU General Public License, version 2 (GPLv2).