Re: user privileges with php (like with suexec)
>From all the discussions here, ot looks like that the only way to use php
with suexec is to use it as parser for cgi programs. The webserver himself
cannot change UID, because it's running under some normal user ( who will
be that crazy to run it as root? ).
The only way I see, is some mechanism in php to do something like suexec,
but what about the security considerations ....
On Mon, 11 Jun 2001, Jason Lim wrote:
> Hi,
>
> This is also something that I've been looking into too, with no success
> yet.
>
> If you find something, let me know and I'll do the same! :-)
>
> Sincerely,
> Jason
>
> ----- Original Message -----
> From: "Jeremy Lunn" <jeremy@austux.net>
> To: <debian-isp@lists.debian.org>
> Sent: Monday, June 11, 2001 11:21 PM
> Subject: user privileges with php (like with suexec)
>
>
> > I am wondering what is the best way to get simular results to suexec
> > with php?
> >
> > I've heard of people running seperate instances of apache for each
> > client. Is that likely to be a messy solution? how much overhead would
> > each instance be?
> >
> > The other solution is to use the CGI version of php and use suexec. I
> > still don't think this is as nice as just using the the php module.
> >
> > Have I missed any solutions?
> >
> > Although I'm reluctant to hack any code that would be running as root,
> > would it be possible to hack php to pass pages to child proceses owned
> > by the same user as the php file and if none exist create one?
> >
> > Thanks,
> >
> > --
> > Jeremy Lunn
> > Melbourne, Australia
> >
> >
> > --
> > To UNSUBSCRIBE, email to debian-isp-request@lists.debian.org
> > with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
> >
> >
>
>
> --
> To UNSUBSCRIBE, email to debian-isp-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
>
Reply to: