[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: CGI Scripts running as user that started apache
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Re: CGI Scripts running as user that started apache
- From: "dreamwvr_(_at_)_dreamwvr_(_dot_)_com" <dreamwvr_(_at_)_dreamwvr_(_dot_)_com>
- Date: Fri, 14 Mar 2003 08:19:40 -0700
i:Exit -:PrevPg <Space>:NextPg ?:Help
CGI scripts should not run as root IMHO. The most they should
get is www.www that is it. The way of modperl is Apache::Registry 4cgi.
Is your intent to use modperl for CGI? So far based on the
script your planning to do CGI? In chroot stock as is
CGI as is does not work. However it can be enabled in chroot
if you like. there was previously submitted a (very_uncooked_way) THX ;-)
It just simply works.
If you can wait am planning to play with systrace with this
in mind. If not please indicate.
/* Security is a work in progress - dreamwvr */
# Note: To begin Journey type man afterboot,man help,man hier[.]
// "Who's Afraid of Schrodinger's Cat?" /var/(.)?mail/me \? ;-]