Re: [pkg-lighttpd] Changing the default document root for HTTP server
On 17/04/12 03:46, Paul Wise wrote:
> What if the sysadmin chose to use
> /srv/http/east-coast/foo.bar.org.vhost/ for the foo.bar.org vhost? Can
> they still use suexec?
Not the normal version, no, because suexec hard-codes the top directory
/var/www as a security measure (you can never use it to execute
something in, say, /tmp).
Debian does have a patched suexec (apache2-suexec-custom) which is
configurable for different directories, although it isn't supported by
Apache upstream.
S
Reply to: