On Fri, 5 Nov 2004 19:53:33 +0200 (EET), [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > Yes, you can make something like that: addgroup(access), then change > groupname of commands that you want with that group (access), remember to > remove "execute/search by others" from commands that are with > group(access), also don't forget to add group(access) to every user that > you want to have access to this commands.
The only thing I'm worried about with that method is whether a user would be able to run commands that they aren't supposed to have access to if they write a Perl script calling one of the banned commands and getting Apache to execute that script. In other words, would the script execute with the script owner's priviledges or with Apache's priviledges? Thanks, Stephen Le -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
