[FUG-BR] Apache

FreeBSD® Hack freebsd em vserver.com.br
Qui Jan 27 11:33:31 BRST 2005 

Tiago Ghisi wrote:

>Preciso roda uma aplicacao via apache, sendo que ela tem que se
>executada via super usuario, existe maneira de roda o apache como
>root, ou algum script, e qual seria o script pode ser em php, nao sei,
>para que o usuario que estiver rodando o apache virar super usuario?
>
>  
>
>------------------------------------------------------------------------
>
>_______________________________________________________________
>Para enviar um novo email para a lista: freebsd em fug.com.br
>Sair da Lista: http://mail.fug.com.br/mailman/listinfo/freebsd_fug.com.br
>Historico: http://www4.fugspbr.org/lista/html/FUG-BR/
>
Isto deve resolver:

                       
     Use the --enable-suexec option to enable the suEXEC feature by building
     and installing the "suexec" support program. Use --suexec-caller=UID to
     set the allowed caller user id, --suexec-userdir=DIR to set the user  
     subdirectory, --suexec-docroot=DIR to set the suexec root directory,
     --suexec-uidmin=UID/--suexec-gidmin=GID to set the minimal allowed
     UID/GID, --suexec-logfile=FILE to set the logfile and
     --suexec-safepath=PATH to set the safe shell PATH for the suEXEC
     feature. At least one --suexec-xxxxx option has to be provided together
     with the --enable-suexec option to let APACI accept your request for
     using the suEXEC feature.
                            
     CAUTION: FOR DETAILS ABOUT THE SUEXEC FEATURE WE HIGHLY RECOMMEND 
YOU TO
              FIRST READ THE DOCUMENT htdocs/manual/suexec.html BEFORE USING
              THE ABOVE OPTIONS.
    
              USING THE SUEXEC FEATURE PROPERLY CAN REDUCE CONSIDERABLY THE
              SECURITY RISKS INVOLVED WITH ALLOWING USERS TO DEVELOP AND RUN
              PRIVATE CGI OR SSI PROGRAMS. HOWEVER, IF SUEXEC IS IMPROPERLY
              CONFIGURED, IT CAN CAUSE ANY NUMBER OF PROBLEMS AND POSSIBLY
              CREATE NEW HOLES IN YOUR COMPUTER'S SECURITY.  IF YOU 
AREN'T  
              FAMILIAR WITH MANAGING SETUID ROOT PROGRAMS AND THE SECURITY 
              ISSUES THEY PRESENT, WE HIGHLY RECOMMEND THAT YOU NOT CONSIDER
              USING SUEXEC AND KEEP AWAY FROM THESE OPTIONS!


_______________________________________________________________
Para enviar um novo email para a lista: freebsd em fug.com.br
Sair da Lista: http://mail.fug.com.br/mailman/listinfo/freebsd_fug.com.br
Historico: http://www4.fugspbr.org/lista/html/FUG-BR/

Mais detalhes sobre a lista de discussão freebsd