httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Jason A. Dour" <...@bcc.louisville.edu>
Subject Re: Time's a wastin'
Date Tue, 24 Sep 1996 13:34:53 GMT
-----BEGIN PGP SIGNED MESSAGE-----

I don't *try* to be obtuse...really I don't...but...

On Tue, 24 Sep 1996, Jim Jagielski wrote:
> But the can_exec() stuff doesn't do anything about setuid. It's basically
> called in mod_cgi.c to see if the httpd process can exec a script.
> can_exec() _should_ check the entire grouplist for the httpd "user".

	OK...I now understand that you are referring specifically to
can_exec and not the model as a whole...sorry for the confusion on my end.

	Now on to my next tedious question... "Why?" Present me
situations, if you can...  I really just do not see why this is necessary.

Jason
+ Jason A. Dour                       jad@bcc.louisville.edu               +
| Programmer Analyst II               http://www.louisville.edu/~jadour01/ |
| Dept. of Radiation Oncology         Finger for Geek Code, PGP Public Key,|
+ University of Louisville            PJ Harvey info, and other stuff...   +

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBMkfjf5o1JaC71RLxAQFdfAP9HIuQ0LWnrzQR93Mdd2zumpSc4SFEbRkS
gZbLvGXRCrpD+Z3IOyR6U9QQ6odEO1ZbmQddRpKsWLfQ+lTkXqwcyXLcKA4ey0Gs
u8r4O1zdWKcbDWKWt1sfOyDjwLU8uP0E7sJAZrMOFFd92cNnlPzrykb7KInUSV4c
7DYgHsCglK0=
=9edh
-----END PGP SIGNATURE-----


Mime
View raw message