Re: [users@httpd] suEXEC question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 10/25/05, Gordon Thagard <gordon@xxxxxxxxxxx> wrote:

> After reading the security checks list it seems somewhat clear that only
> the apache (perhaps the "nobody" user, as that's how I've set mine) user
> can execute cgi or PHP code. I want users to be able to authenticate and
> then be able to:
>
> a. change passwords
> b. turn off/on vacation via /usr/local/bin/vacation
> c. turn off/on spam filtering via adding/removing a pre-written
> .mailfilter file into/out of the user's home directory
>
> Is this possible via the User directories usage description above or is
> there another way or no way using Apache?

No, this is not a good usage of suexec.  You would need to put cgi
scripts in each users home directory to make it work.

You should look into sudo, but be very careful.  Allowing access to
regular accounts over the web is a good way to compromise your server.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux