On Sun, 20 Feb 2000, Adam Shand wrote:
> > > Here is a list of searches from the apache main site about suxec AND > > security: > > thanks but i just figured it out. all that needed to happed was to have the > suid bit set on the suexec binary. > > # chmod 4711 /usr/lib/apache/suexec > > the log file shows that it is now detecting the suexec binary, and when i do > a "apachectl configtest" i now get "Syntax OK". > > does anyone know, is this a bug or is this the way it's "supposed to > be". sorry for following up my own post. > It is the way it is supposed to be. With suEXEC enabled, cgi-s run setuid-ed, which is always a risky thing, so it should be done on the administrator's explicit statement, hence the need for enabling suEXEC manually. Robert Varga
