From owner-freebsd-questions@FreeBSD.ORG  Thu Apr 29 07:30:38 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 731E816A4CE
	for <freebsd-questions@freebsd.org>;
	Thu, 29 Apr 2004 07:30:38 -0700 (PDT)
Received: from idoru.mine.nu (cpc3-cdif2-3-0-cust202.cdif.cable.ntl.com
	[81.103.32.202])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D275A43D41
	for <freebsd-questions@freebsd.org>;
	Thu, 29 Apr 2004 07:30:37 -0700 (PDT)
	(envelope-from rasputin@idoru.mine.nu)
Received: from rasputin by idoru.mine.nu with local (Exim 4.22)
	id 1BJCYe-0007Eq-Pd; Thu, 29 Apr 2004 15:30:36 +0100
Date: Thu, 29 Apr 2004 15:30:36 +0100
From: Dick Davies <rasputnik@hellooperator.net>
To: Marty Landman <MLandman@face2interface.com>
Message-ID: <20040429143036.GC21785@lb.tenfour>
References: <200404262126.36157.mikkel@talkactive.net>
	<200404291058.44766.mikkel@talkactive.net>
	<409109D6.2090504@circlesquared.com>
	<200404291406.58150.mikkel@talkactive.net>
	<6.0.0.22.0.20040429101444.0e68a6a0@pop.face2interface.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <6.0.0.22.0.20040429101444.0e68a6a0@pop.face2interface.com>
User-Agent: Mutt/1.4.2.1i
Sender: Rasputin <rasputin@idoru.mine.nu>
cc: FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: Suexec with Apache 1.3.29
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: Dick Davies <rasputnik@hellooperator.net>
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Apr 2004 14:30:38 -0000

* Marty Landman <MLandman@face2interface.com> [0423 15:23]:
> 
> With suexec running, a cgi gets set to 744 or 700 instead of 755; a data 
> file e.g. log or count file gets 644 or 600 instead of 666. It's amazing to 
> me that more vandalism and cross site scripting doesn't occur given the 
> servers that still don't run suexec, or the users that aren't hip to using 
> it properly for setting permissions when the server does support it.

suexec is a pig to configure, complex and poorly documented. I think that's 
at least partly why the world runs away from CGI and towards stuff like
JSP/PHP....


-- 
Reality is for people who lack imagination.
Rasputin :: Jack of All Trades - Master of Nuns