Date: Tue, 3 Mar 1998 22:40:01 -0800 (PST) From: "Scot W. Hetzel" <hetzels@westbend.net> To: freebsd-ports Subject: Re: ports/4878: Apache w/FrontPage Module Port Message-ID: <199803040640.WAA06596@hub.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/4878; it has been noted by GNATS. From: "Scot W. Hetzel" <hetzels@westbend.net> To: <freebsd-gnats-submit@freebsd.org> Cc: Subject: Re: ports/4878: Apache w/FrontPage Module Port Date: Wed, 4 Mar 1998 00:30:04 -0600 The following was reported to me when an optional module (proxy) was being compiled into the apache-fp server: >ttpd.pid\" -DDEFAULT_SCOREBOARD=\"/var/run/apache_runtime_status\" >-DDEFAULT_LOCKFILE=\"/var/spool/lock/accept.lock\" >-DSERVER_SUBVERSION=FrontPage/3.0.3 -c proxy_connect.c >proxy_connect.c: In function `proxy_connect_handler': >proxy_connect.c:171: parse error before `FrontPage' >proxy_connect.c:171: malformed floating constant >*** Error code 1 The problem is with the patch that Microsoft is distributing with the FrontPage Extensions, it has SERVER_SUBVERSION defined as follows: -DSERVER_SUBVERSION='"FrontPage/3.0.3"' it should have been defined as: -DSERVER_SUBVERSION=\"FrontPage/3.0.3\" Version C of the apache-fp port fixes this problem and includes support for the suexec+ program. suexec+ was modified so that it automatically passes control over to the fpexe program, if a FrontPage extension is being called. Instead of trying to run fpexe suid. To compile apache-fp w/suexec+, use: make SUEXEC=YES NOTE: the apache-fp server must be run as www, as currently suexec+ will only allow this user to execute suexec. To change the user that suexec+ expect, you need to change HTTPD_USER in "files/Makefile", before a "make configure". Also, user CGI programs can only be run from the "public_html/cgi-bin". Originally, suexec+ wanted to run the CGI programs directly from the public_html directory. WARNING: suexec+ hasn't been tested, as currently I don't have any or run CGI programs on my server. The updated port is available at http://www.westbend.net/~hetzels/apache-fp and was last updated on 3/3/98. Q. Currently, suexec+ is defining the safe path as "${PREFIX}/bin:/bin:/usr/bin:.", in suexec+.h. Should the safe path be including the "." in the path, will it cause a security problem. The original suexec.h, doesn't include "." in the path. Scot. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199803040640.WAA06596>