apache suexec
I compiled apache 1.3.33 with suexec support like
./configure \
"--with-layout=Apache" \
"--prefix=/usr/local/apache" \
"--enable-module=ssl" \
"--activate-module=src/modules/php4/libphp4.a" \
"--activate-module=src/modules/perl/libperl.a" \
"--enable-module=perl" \
"--enable-module=most" \
"--enable-suexec" \
"--suexec-uidmin=100" \
"--suexec-gidmin=100" \
"--suexec-userdir=public_html" \
"--suexec-caller=nobody" \
"--suexec-logfile=/wallaby-local/apache/logs/suexec_log" \
Everthing is working fine, when I run a cgi script through web it is suexec wrappered and only runs as the user who own the script,
but I run php script is not being suexec wrapper and runs as the user nobody which is a security risk.
How do I enable PHP being executed through suexec?
Thanks
|