1 |
On Mon, 15 Jun 2009 08:21:18 -0500 |
2 |
Harry Putnam <reader@×××××××.com> wrote: |
3 |
|
4 |
> Starting to emerge apache I see the default USE flags include |
5 |
> -suexec. I'm not much of an apache buff but wondered if that would |
6 |
> have a bad effect on allowing users to run cig scripts. |
7 |
|
8 |
cgi |
9 |
|
10 |
> I'm not even sure its related... but recall something dimly about |
11 |
> using suexec to run such scripts. |
12 |
|
13 |
You probably confusing suid (elevated privileges) and shebang (first |
14 |
line of the file, specifying what to run as an interpreter). |
15 |
|
16 |
Suexec in apache probably doesn't have much use beyond hosting |
17 |
platforms - it allows to handle different urls / vhosts with different |
18 |
privileges, so, say, to return some "john.myserver.com" page apache will |
19 |
drop privileges to local user "john", while serving "myserver.com" from |
20 |
"www" user on the same port by the same daemon, so john's scripts won't |
21 |
be able to access www-data and vice versa. |
22 |
|
23 |
-- |
24 |
Mike Kazantsev // fraggod.net |