Suexec with Apache 1.3.29
Dick Davies
rasputnik at hellooperator.net
Thu Apr 29 07:30:38 PDT 2004
* Marty Landman <MLandman at face2interface.com> [0423 15:23]:
>
> With suexec running, a cgi gets set to 744 or 700 instead of 755; a data
> file e.g. log or count file gets 644 or 600 instead of 666. It's amazing to
> me that more vandalism and cross site scripting doesn't occur given the
> servers that still don't run suexec, or the users that aren't hip to using
> it properly for setting permissions when the server does support it.
suexec is a pig to configure, complex and poorly documented. I think that's
at least partly why the world runs away from CGI and towards stuff like
JSP/PHP....
--
Reality is for people who lack imagination.
Rasputin :: Jack of All Trades - Master of Nuns
More information about the freebsd-questions
mailing list