>Number: 2202 >Category: general >Synopsis: .cgi programs in user directories run without suexec >Confidential: no >Severity: non-critical >Priority: medium >Responsible: apache >State: open >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Thu May 7 02:20:01 PDT 1998 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.2.6 >Environment: Linux 2.0.30 gcc 2.7.2.3 >Description: No answer required The presence or absence of suexec had no effect on whether user .cgi programs would run, nor did the specified owner in suexec.h make any difference.
I'll figure it out myself, but just thought the report might interest you. Maybe I missed something about what suexec is supposed to do. >How-To-Repeat: Run Apache with cgi enabled by the various items in the .conf files, but without suexec being present. >Fix: ?? I don't know, maybe Apache is supposed to work this way! >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ]
