/usr/lib/cgi-bin ownerships and permissions
-----BEGIN PGP SIGNED MESSAGE-----
My question pertains to dedicating a user to webmaster to allow the user
to create and maintain cgi scripts.
First, do cgi scripts get run by www-data?
When apache (or I assume any web server following the new web standard) is
installed, it creates the directory /usr/lib/cgi-bin (if it wasn't there
already) with the directory cgi-bin belonging to root:root and permission
755 (which is what the policy manual dictates).
What do I need to do to dedicate a user to be webmaster and to be able to
write cgi-scripts? I thought I would just need to add that user to group
www-data. However, the user would still not be able to write to
/usr/lib/cgi-bin. Obviously, I could just change the permissions from 755
to 775 but I thought I would ask in case this is a security risk. If this
is correct, should it be set up that way in the first place? Am I missing
Colin R. Telmer, Department of Economics, Dunning Hall
Queen's University, Kingston, Ontario, Canada, K7L-3N6
Phone: (613)545-2273 Email: firstname.lastname@example.org
PGP Fingerprint = 09 E9 DA 66 9C EE 33 DC B8 3B 97 0E 01 BC EC 0B
PGP Public Key: finger email@example.com
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
Trouble? e-mail to firstname.lastname@example.org .