This is part of The Pile, a partial archive of some open source mailing lists and newsgroups.
=== Subject: Re: Perl/system()/Linux From: Chris Maresca <ckm@crust.net> Date: Wed, 29 Mar 2000 19:43:13 -0800 (PST) In order to do this, apache needs to be compiled with the set UID function, which is poorly documented on purpose. Otherwise, a CGI will *always* run with the webserver permissions... === Subject: Re: Specifics from 12+ yrs Unix, 18 Programming, newbie to Linux From: Chris Maresca <ckm@crust.net> Date: Wed, 29 Mar 2000 21:27:45 -0800 (PST) I think I already answered this, but I'm reading mail in reverse order of arrival, so here goes again... You *must* compile apache with the set UID module. It is intentionally poorly documented in order to avoid people enabling it by mistake. SUID on Linux works exactly the same way as all other Unices I have ever used (Solaris, Digital, AIX, Next, etc.), but it won't do anything for a CGI script since httpd will just ignore it and run the process as whatever the httpd is running as (usually "nobody"). I believe that apache will not run as root out of the box, and besides, that's a really, really bad idea. === Subject: Re: Perl/system()/Linux From: Shane Owenby <shane@collab.net> Date: Wed, 29 Mar 2000 21:53:37 -0800 On Wed, Mar 29, 2000 at 07:43:13PM -0800, Chris Maresca wrote: > > In order to do this, apache needs to be compiled with the set UID > function, which is poorly documented on purpose. Um....maybe quite obscure..but the docs are pretty thorough... http://www.apache.org/docs/suexec.html ===