httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Marc Slemko <ma...@worldgate.com>
Subject Re: listenwrap support
Date Mon, 19 Oct 1998 02:02:03 GMT
On Sun, 18 Oct 1998, Dean Gaudet wrote:

> 
> 
> On Sun, 18 Oct 1998, Manoj Kasichainula wrote:
> 
> > How are you doing this so far? Do you already have a setuid logger
> > hiding somewhere?
> 
> You mean like:
> 
> #!/usr/bin/perl
> $#ARGV == 0 || die "usage: logger filename\n";
> open(LOG, ">>$ARGV[0]") || die "$0: unable to open $ARGV[0] for writing: $!\n";
> print LOG <STDIN>;
> 
> and then setuid it to a non-root user who is also not the same as the user
> httpd runs as? 

Well, you need it a bit more complex than that to avoid anyone from
running it...

> 
> You don't need logs written as root, you just need them written as
> something that's not the samea s httpd. 

You don't really _want_ them written as root either, but the current code
takes the lazy way out beacuse people would be too hard pressed to
configure two users for Apache.


Mime
View raw message