* Everything in /srv/ctf now, set $CTF_BASE to override that * CGI now accepts parms in argv * Fix bug with uninitialized CGI vars
There's just no good way to tell what team is legit and what team is an attempt at an XSS or whatever tomfoolery contestants might be up to. CGI might work for high school kids, but for that a shell script would probably work.