Re: [users@httpd] Re: Re: cgi scripts outside of cgi-bin

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 12/15/05, Christopher J. Bottaro <cjbottaro@xxxxxxxxxxxxxxxxxxxx> wrote:

> >> > suexec.log says this:
> >> >
> >> > [2005-12-13 15:03:19]: uid: (501/sti) gid: (501/501) cmd: upload.cgi
> >> > [2005-12-13 15:03:19]: directory is writable by others:
> >> > (/home/sti/public_html/tragence/webapp/interfaces/weblib/pb_upload)

> The weird thing is that 'others' can't write to that dir:
>
> $ ls -ld /home/sti/public_html/tragence/webapp/interfaces/weblib/pb_upload
> drwxrwxr-x  3 sti sti 4096 Dec 15
> 15:42 /home/sti/public_html/tragence/webapp/interfaces/weblib/pb_upload
>
> If I chmod it to 770, apache complains that it doesn't have permissions to
> read the the cgi file (obviously).

What are you changing read permissions for?   You just need to remove
the group write bit.  See number 14 here:
http://httpd.apache.org/docs/2.2/suexec.html

>
> The other weird thing is that apachectl -V says that suexec is
> in /usr/sbin/suexec...but strangely enough, that file doesn't exist.

Then apachectl is not pointing at the correct httpd binary or you have
some very screwed up install.

Joshua.

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux