DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=28116>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=28116 FAQ: how to turn off suexec in third-party distros ------- Additional Comments From [EMAIL PROTECTED] 2004-04-05 20:48 ------- I personally don't think it is worth it, because there are at least a half-dozen other ways that the suexec security checks could fail. And some of them are probably fairly common. My suggestion to Redhat would be to install suexec as "suexec.notactive" (or even better, install it without suid permissions; but I'm not sure if that would cause problems in 2.0) and then have a comment in httpd.conf explaining how to activate it, how to use "suexec -V" to get the configuration, and where to find the docs. But I guess the discussion of that is not really appropriate for this bug database (and if Redhat where to fix this, I'd have one less thing to complain about, and *that* would really annoy me). --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
