Re: enabling suexec with debian apache [solved]
On Sun, 20 Feb 2000, Adam Shand wrote:
>
> > Here is a list of searches from the apache main site about suxec AND
> > security:
>
> thanks but i just figured it out. all that needed to happed was to have the
> suid bit set on the suexec binary.
>
> # chmod 4711 /usr/lib/apache/suexec
>
> the log file shows that it is now detecting the suexec binary, and when i do
> a "apachectl configtest" i now get "Syntax OK".
>
> does anyone know, is this a bug or is this the way it's "supposed to
> be". sorry for following up my own post.
>
It is the way it is supposed to be. With suEXEC enabled, cgi-s run
setuid-ed, which is always a risky thing, so it should be done on the
administrator's explicit statement, hence the need for enabling suEXEC
manually.
Robert Varga
Reply to: