httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Sagara Wijetunga <sagarali...@yahoo.com>
Subject [users@httpd] Secure Apache VirtualHost and suEXEC Support
Date Tue, 22 Jul 2003 08:53:18 GMT
Secure Apache VirtualHost and suEXEC Support

I need to implement a Secure Apache Virtual Hosts on a
single server running Linux 2.4 and Apache 2. This
further requires for me to provide CGI facility with
database support.

Since Apache’s normal mode of operation with CGI
support is not safe in a multi-user environment, I
have considered Apache with suEXEC support.

I read the suEXEC Support documentation
(http://httpd.apache.org/docs-2.0/suexec.html) and I
have following queries with suEXEC Support:

1.	Is there a way to specify the Virtual Host Root and
its DocumentRoot separately for a particular Virtual
Host? 
Eg.
Virtual Host Root1: /var/websites/www.company1.com
Its DocumentRoot: /var/websites/www.company1.com/html

Virtual Host Root2: /var/websites/www.company2.com
Its DocumentRoot: /var/websites/www.company2.com/html


2.	Is it possible to keep the cgi-bin directory for a
particular Virtual Host under its Virtual Host Root,
but NOT under its DocumentRoot?
Ie. 
Virtual Host Root:  /var/websites/www.company1.com
Its DocumentRoot: /var/websites/www.company1.com/html
Its Cgi-bin Root:   
/var/websites/www.company1.com/cgi-bin

3.	Is it possible to restrict the scope for CGI
scripts to read resources (eg. Files) ONLY from any
directory under its Virtual Host Root, but NOT above
its Virtual Host Root? 

An early reply is very much appreciated. 
Thanks.
Sagara


__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message