Re: Apache security compromise
The log entries you quote do not indicate any security compromise.
suexec is a utility used to all CGI scripts within a user's web space
(~/public_html) to execute as the user rather than as the web browser.
Such a thing is useful for a web service provider, but I don't find it
useful for small organizations of mostly trusted users. To turn off
suexec, just
chmod u-s /usr/lib/apache/suexec
Unfortunately, any apache update will re-set the suid bit on this
binary, and you'll have to repeat this step afterward.
--
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: