World Wide Web Policies

It has become evident that World Wide Web servers are among the most popular targets of remote users attempting to gain unauthorized access to computers on the Internet. Methods used in these attacks include exploitation of problems with the servers themselves, and with scripts written using the Common Gateway Interface (CGI).

Unfortunately, in our complex computing environment it is very difficult to list all of the potential vulnerabilities that could be used to gain unauthorized access to departmental resources. After considering various options, we have decided to implement the following policies regarding web servers, which we believe strikes the correct balance between usability and security.

CGI Scripts

• CGI scripts are allowed on http://www.cs.wisc.edu.
• Use of this function should comply with applicable UW and CS Department policies regarding appropriate use of computing facilties.

See Also:

• CGI on WWW Policies
• The Web Server
• Computer Systems Lab Account Policies

Personal Web Pages

• CSL users can create personal web pages, using resources already allocated to the user. Additional resources (disk space, etc) will not be provided.
• Personal web pages should comply with applicable UW and CS Department policies regarding appropriate use of computing facilties.

See Also:

• Computer Systems Lab Account Policies

Web Servers

• Users may not install web servers on the CSL network
• Research projects that have special needs for a private web server should contact the lab. We will work with you to install and maintain a web server on an appropriate computer.