Re: suEXEC witch mod_userdir

To: debian-isp@lists.debian.org
Cc: debian-isp@lists.debian.org
Subject: Re: suEXEC witch mod_userdir
From: Thomas Goirand <thomas@goirand.fr>
Date: Thu, 12 Mar 2009 03:20:15 +0800
Message-id: <[🔎] 49B80EEF.7080800@goirand.fr>
In-reply-to: <[🔎] ee5163b50903110708y5df7f11cu56e8cafafd0a94e3@mail.gmail.com>
References: <[🔎] ee5163b50903110708y5df7f11cu56e8cafafd0a94e3@mail.gmail.com>

Marc Aymerich wrote:
> Hi everybody,
> 
> We have a apache2-worker in production enviroment with 200 users,
> this users can access at their websites by domain name
> http://www.userdomani.org (virtualhost configuration) or by username
> http://www.domanin.org/~username (mod_userdir). The VirtualHost
> configuration work's perfectly, the problem is with mod_userdir,
> mod_userdir doesn't execute suEXEC and consequently the CGI's aren't
> executed by suexec :( We investigated for several days but we have
> not been able to find the problem.

Can I suggest you to have a look at "sbox-dtc" that I maintain in
Debian? This one has chroot and many limits set for your users. This
improves A LOT the security of your cgi-bin (even if you disable the
chroot feature in the config file...), and might resolve your chuid issue.

Thomas

Reply to:

References:
- suEXEC witch mod_userdir
  - From: Marc Aymerich <glicerinu@gmail.com>

Prev by Date: Awstats and apache2-mpm-itk
Next by Date: Re: suEXEC witch mod_userdir
Previous by thread: suEXEC witch mod_userdir
Next by thread: Re: suEXEC witch mod_userdir
Index(es):
- Date
- Thread