CGI scripts creating files with odd ownerships

Apache appears to have been compiled with suEXEC theoretically enabled, but the path to the suEXEC wrapper itself set wrong; there are no references to suEXEC config in the .conf files that I can find.

Am I right in thinking that the solution here is probably to recompile Apache without suEXEC??

Comment on CGI scripts creating files with odd ownerships

Replies are listed 'Best First'.
OT Re: CGI scripts creating files with odd ownerships by Zaxo (Archbishop) on Jul 02, 2001 at 21:36 UTC
Some administrators don't like suEXEC because cgi then runs with higher privileges than 'nobody'. I am in the opposite camp. I think that security is enhanced by giving users full use of file system permissions on their site. Bad scripts can eat resources in either case, and suEXEC limits the damage one user's error can do to another user's site. There is terse but (I believe) complete documentation of proper suEXEC setup in the Apache manual. After Compline, Zaxo	[reply]

Replies are listed 'Best First'.

OT Re: CGI scripts creating files with odd ownerships
by Zaxo (Archbishop) on Jul 02, 2001 at 21:36 UTC

Some administrators don't like suEXEC because cgi then runs with higher privileges than 'nobody'. I am in the opposite camp. I think that security is enhanced by giving users full use of file system permissions on their site. Bad scripts can eat resources in either case, and suEXEC limits the damage one user's error can do to another user's site.

There is terse but (I believe) complete documentation of proper suEXEC setup in the Apache manual.

After Compline,
Zaxo

[reply]