Suexec and Apache: A Tutorial Page 4
Download the authoritative guide: Data Center Guide: Optimizing Your Data Center Strategy
Download the authoritative guide: Cloud Computing: Using the Cloud for Competitive AdvantageThe default value for this option is PREFIX
/share/htdocs, where 'PREFIX' comes from the value of the
--prefixoption, explicit or implied.
suexec's restrictions is that the user it's being asked to execute the script as mustn't be considered 'privileged.' On Linux and other Unix-like systems this generally means that it mustn't be the
suexectakes this a step further and will refuse to execute as any user with a group ID less than the value of this option.
The default value for this option, if not specified, is
root, but closed before control is passed to the script.
default for this option is PREFIX
'PREFIX' is the value from the
PATHis set to a known list of directories as well. This list is hard-coded at compile-time, and is defined by this option.
The default value for
--suexec-gidminoption described earlier, this option is used to inform
suexecof forbidden UID values. If a request is made that would result in the execution of a script by a user with a UID equal to or less than this value, the wrapper will log the fact and not process the request. This foils things like a request for
The default value for this option is
umask(1)command for more details.
If this option isn't defined at compile-time, at run-time the
suexec wrapper will inherit the umask setting from the parent
Apache server process.
suexecwill use to find scripts for
~username-style URLs. This needs to match the setting of the
UserDirdirective in your server configuration files.
suexec can only handle simple subdirectory expressions. The
more complex pattern-handling capabilities of the
module (which implements the
UserDir directive) cannot be used
--suexec-userdir setting is
If you want to change the location of the
suexec binary, you
can do so by adding a new definition of
SUEXEC_BIN to the
% env CFLAGS="-Wall -DSUEXEC_BIN=\"/usr/local/web/apache/suexec\"" \ > ./configure --enable-suexec ...
You should be extremely cautious about changing other definitions, such as
HTTPD_ROOT, however, since
suexecisn't the only part of Apache that uses them.
User IDs Suexec Will Use
IT Solutions Builder TOP IT RESOURCES TO MOVE YOUR BUSINESS FORWARD
Which topic are you interested in?
What is your company size?
What is your job title?
What is your job function?
Searching our resource database to find your matches...