httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rob Hartill <r...@imdb.com>
Subject Re: WWW Form Bug Report: "correction of suexec when used with chroot()" on Irix
Date Sat, 04 Jan 1997 23:59:40 GMT



On Sat, 4 Jan 1997 lasse@zone.no wrote:

> Submitter: lasse@zone.no
> Operating system: Irix, version: 
> Version of Apache Used: 1.2b4
> Extra Modules used: all except proxy
> URL exhibiting problem: 
> 
> Symptoms:
> --
> Effective GID of process started by
> suexec is set to the correct GID _plus_
> the GID of the last group in /etc/group
> that the web-user is a member of. Probably an
> Irix-bug regarding chroot() (yes, which I put in)
> but it is solved by running setgid() before
> initgroups() and not after.
> 
> Just thought you would like to know...

I'll forward your mail to the appropriate people.

> 
> ( I have a chroot() just before the
> call to setgid() to be even more secure :-)
> 
>  - Lasse
> 
> PS. Who shall I contact to mirror the apache.org
>    server on a faster norwegian server ?

I think you can just go ahead and do it. Inform
brian@organic.com if/when you do so he can update
the list of sites.

regards,
rob

Mime
View raw message