[users@httpd] suexec and shared binaries

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: [users@httpd] suexec and shared binaries
From: Sven Karlsson <karlesven@xxxxxxxxx>
Date: Fri, 11 Nov 2005 23:22:48 +0100
Delivered-to: apmail-httpd-users-archive@xxxxxxxxxxxxxx
Delivered-to: apmail-httpd-users-archive@xxxxxxxxxxxxxxxx
Delivered-to: mailing list users@xxxxxxxxxxxxxxxx
Mailing-list: contact users-help@xxxxxxxxxxxxxxxx; run by ezmlm
Reply-to: users@xxxxxxxxxxxxxxxx

Hello,

I'm setting up a hosting site with virtual domains, and to increase security I intend to run suexec'd php and cgi's.

I'd also like to keep redundancy to a minimum; i.e. only one copy of php in /usr/lib/cgi-bin . If I need to upgrade php, I'd like to do it in one place, not messing with users cgi-bin directories.

Now, suexec requires that both the cgi (in this case php) and its directory is owned by the vhost owner/uid, otherwise it refuses to execute.

So my question is, is there some way of having a "shared" cgi-bin where suexec does not care about the file owner, or perhaps accepts one uid (a "sharedcgi" user) as owner.

Of course, the source can be modified, but the documentation strongly advices against this... so if there is some other solution, I'm all ears!

Thanks,
Sven

Follow-Ups:
- Re: [users@httpd] suexec and shared binaries
  - From: Joshua Slive

Prev by Date: Re: [users@httpd] Running PHP scripts as owner UID
Next by Date: [users@httpd] Re: Apache 2/Mod_JK 1.2 Slow File Download
Previous by thread: [users@httpd] Running PHP scripts as owner UID
Next by thread: Re: [users@httpd] suexec and shared binaries
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]