httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Randy Terbush <ra...@zyzzyva.com>
Subject Re: [BUG]: "Caanot execute a cgi-script in virtual environment with the virtual-userid" on Linux (fwd)
Date Sun, 19 Jan 1997 23:26:05 GMT

My bet is that the user has not configured the suexec wrapper.

Nevertheless, your comments raise a good point. I think that 
the comparison should be r->server->server_uid instead of userid, etc.


> Ok.  I think he is talking about the below.  It requires that the file be
> executable by the user/group that the child processes run as.  This
> imposes a false restriction on virtual domains with a different User
> statement and ~user scripts; ie. they need to be world (normally, group
> could work in some cases) executable in order to work.
> 
> Bug or feature?
> 
> int can_exec(const struct stat *finfo) {
> #ifdef MULTIPLE_GROUPS
>   int cnt;
> #endif
> #ifdef __EMX__
>     /* OS/2 dosen't have Users and Groups */
>     return 1;
> #else    
>     if(user_id == finfo->st_uid)
>         if(finfo->st_mode & S_IXUSR)
>             return 1;
>     if(group_id == finfo->st_gid)
>         if(finfo->st_mode & S_IXGRP)
>             return 1;
> #ifdef MULTIPLE_GROUPS
>     for(cnt=0; cnt < NGROUPS_MAX; cnt++) {
>         if(group_id_list[cnt] == finfo->st_gid)
>             if(finfo->st_mode & S_IXGRP)
>                 return 1;
>     }
> #endif
>     return (finfo->st_mode & S_IXOTH);
> #endif    
> }
> 
> 
> On Sun, 19 Jan 1997, Aram Mirzadeh wrote:
> 
> > 
> > no ack.
> > 
> > ms@softpoint.de said:
> > > From nobody@hyperreal.com  Fri Jan 17 06:57:52 1997
> > > Message-Id: <199701171158.DAA02247@taz.hyperreal.com>
> > > From: ms@softpoint.de
> > > To: awm@qosina.com
> > > Date: Fri Jan 17  3:58:47 1997
> > > Subject: [BUG]: "Caanot execute a cgi-script in virtual environment with the
virtual-userid" on Linux
> > > 
> > > Submitter: ms@softpoint.de
> > > Operating system: Linux, version: 
> > > Version of Apache Used: 1.2b4
> > > Extra Modules used: 
> > > URL exhibiting problem: 
> > > 
> > > Symptoms:
> > > --
> > > in util.c function can_exec is no check for the
> > > virtualserver-userid only for the global-user_id
> > >  
> > > --
> > > 
> > > Backtrace:
> > > --
> > > 
> > > --
> > > 
> > 
> > 
> > -- 
> > Aram Mirzadeh						awm@qosina.com
> > MIS Manager				      Apache httpd team member
> > Qosina Corporation				    aram@hyperreal.com
> > http://www.qosina.com/			    http://www.qosina.com/~awm
> > PGP Key 			http://www.qosina.com/~awm/pgpkey.html
> > Key Sig 	      BE 49 9D F6 2A A7 22 FC  02 E9 1E 3D F7 0C 67 A0
> > 
> > "I've heard snappier comebacks from a bowl of Rice Krispies. 
> > 				-- Charles Emerson Winchester III
> > 




Mime
View raw message