I have a question to which I am trying to find an answer. If suexec is enabled in apache, a user can run his scripts under his own ID. It is fine. My questions are
1. In the first place for what purposes a user want to run CGI under his own ID.
2. Whatever is the purpose , why can't we change the permissions for the user accordingly in his virtual host entry in httpd conf file
3. Also I read that there are dangers in enabling suexec. What are the dangers. Some where it is written that when other users can execute his CGI scripts . it poses a danger to the server. How is this caused. Please explain me with a scenario.
I have read many articles , but I could not understand why the users want to run CGI scripts under their own ID. Why can't they be run under server's ID as nobody .
Thank You very much.
Webinar: 8 Signs You’re Beyond Cron
On Demand NOW
Join Linux Journal and Pat Cameron, Director of Automation Technology at HelpSystems, as they discuss the eight primary advantages of moving beyond cron job scheduling. In this webinar, you’ll learn about integrating cron with an enterprise scheduler.View Now!
|Dr Hjkl on the Command Line||May 21, 2015|
|Initializing and Managing Services in Linux: Past, Present and Future||May 20, 2015|
|Goodbye, Pi. Hello, C.H.I.P.||May 18, 2015|
|Enter to Win Archive DVD + Free Backup Solution||May 18, 2015|
|Using Hiera with Puppet||May 14, 2015|
|Urgent Kernel Patch for Ubuntu||May 12, 2015|
- Dr Hjkl on the Command Line
- Initializing and Managing Services in Linux: Past, Present and Future
- Goodbye, Pi. Hello, C.H.I.P.
- Using Hiera with Puppet
- Enter to Win Archive DVD + Free Backup Solution
- Gartner Dubs DivvyCloud Cool Cloud Management Vendor
- Infinite BusyBox with systemd
- Mumblehard--Let's End Its Five-Year Reign
- It's Easier to Ask Forgiveness...
- Urgent Kernel Patch for Ubuntu