httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Stian Brattland <>
Subject [users@httpd] suEXEC documentation
Date Tue, 13 Apr 2010 19:27:14 GMT
Dear all,

I have justed startet to experiment with suEXEC and Apache. I've 
successfully configured a web server with the suEXEC feature,
and everything seems to work fine. However, there are a couple of things 
in the documentation which i am a little uncertain about.
I am therefore hoping that someone kindly will be willing to share some 
of their knowledge here. For your reference, the documentation
can be found on

The suEXEC documentation outlines that it runs through 20 different 
checks before a given script is executed. What i am a little
uncertain about is the check #16 and #18.

#16. Is the target CGI/SSI program not writable by anyone else?
#18. Is the target user/group the same as the program's user/group.

My questions with regard to the above checks are:

1. With regard to #16, does "CGI/SSI program" mean the php parser itself?
2. With regard to #18, does "the program" refer to the same "CGI/SSI" 
program as described in #16?

Last, does the ownership of the actual script (say index.php) ever play 
a role in this context?

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message