[svlug] To suEXEC or not

Ray Olszewski ray at comarre.com
Tue Nov 10 13:49:21 PST 1998

Previous message: [svlug] brain fart: proposal to the DOJ
Next message: [svlug] To suEXEC or not
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Actually, I had a similar problem a couple of years ago with a perl/CGI app
I was then writing. I fixed it approximately the way your Solution_1
describes, though the details differed a bit. In particular, my system did
(using your terminology) chown HTMLEditors, chgrp www (it was a shell
script, not perl), then put the files into mode 775, 664, or 620 as was
appropriate to the particular case. This gave WebMaster any needed access
via the www group. 

Worked fine and felt pretty safe. I'm assuming here (regarding "safe") that
the userid WebMaster is set up like nobody.

At 02:45 AM 11/10/98 -0800, Alvin Oga wrote:
[deleted]

>Proposed Solution_1:	Fixed_abc.pl ( my preferred solution )
>	mkdir new_directory;
>--->>	chown WebMaster.www new_directory
>--->>	chmod 775 new_directory		( set umask instead )
>
>	touch new_diectory/foo.html;
>--->>	chown WebMaster.www new_directory/foo.html;
>--->>	chmod 664 new_directory/foo.thml
>
>	- using chown ensures the files is always
>	- owned by Webmaster ( aka apache )....
------------------------------------"Never tell me the odds!"---
Ray Olszewski                                        -- Han Solo
762 Garland Drive
Palo Alto, CA  94303-3603
650.321.3561 voice                               ray at comarre.com
650.322.1209 fax                 http://www.comarre.com/ray.html
----------------------------------------------------------------

--
echo "unsubscribe svlug" | mail majordomo at svlug.org
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ to unsubscribe

Previous message: [svlug] brain fart: proposal to the DOJ
Next message: [svlug] To suEXEC or not
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the svlug mailing list