httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Joshua Slive <jos...@slive.ca>
Subject Re: [users@httpd] many virtual hosts suexec as home directory owner
Date Tue, 04 Mar 2003 18:19:53 GMT

On Tue, 4 Mar 2003, Brian Hunt wrote:

> Hi Everyone,
>
> I want to give user "bob" a virtual host, ala., "bob.servername" which
> runs CGI as user bob, just like ~bob with mod_userdir.
>
> Setting up the virtual hosts I do with mod_rewrite, likeso (I set env.
> variables and such, so rewrite is preferable to the vhost_alias module):

> where ~/public_vhost is their virtual host directory.  Unfortunately, I
> do not know how to configure apache to suexec the CGI files
> appropriately, without hard coding a virtual host for each user (which
> is not viable in this case).

Suexec will not do this.  It violates the basic security model of this
tool.  You might want to look into cgiwrap, which in some ways has more
flexibility.

> The problem is that these CGI scripts create new files in user
> directories (as uid:gid www-data:www-data) which they cannot create,
> edit, or delete. So, as a weak alternative to suexec'ing as the home
> directory owner, I would like to configure the umask or equivalent
> file-creation permissions of apache CGI scripts to world writable, or at
> least group writable.

Have you tried simply setting the umask of the shell from which you launch
apache?

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message