Synopsis: CGI scripts running as Apache user: security (suexec etc.) State-Changed-From-To: open-feedback State-Changed-By: dgaudet State-Changed-When: Mon Oct 20 23:25:02 PDT 1997 State-Changed-Why: A good suggestion, actually this is how I thought it worked, but I guess not.
You can also define a _default_ vhost like: <VirtualHost _default_> In which no CGI is allowed, and this essentially overrides the main/global server (and could use a different uid/gid). Dean
