On Wednesdayen den 31 July 2002 22.34, David Walser wrote: > --- Oden Eriksson <[EMAIL PROTECTED]> wrote:
> What I'd like to see for Mandrake is it as quick and > easy as possible for anybody to get it to do what they > want it to do (obviously while being very sensitive to > security issues). Yes..., it's a very sensible tightrope to walk, either usable and less secure, or not, I don't know how to accomplish both, maybe someone else does? > > Regarding your specific case with the apache2 > > packages, there's a possible > > conflict where the apache UID/GUID is lower than the > > lowest acceptable for > > the suexec (UID=500 GUID=500). > > If I understand what's been going on recently > correctly, now the apache (1) package is responsible > for adding that user/group, so should it maybe be > giving it a higher UID/GID? Yes, that might work. I guess I could change the suexec2 stuff so it's more like the apache1 one as in: suexec -V -D DOC_ROOT="/var/www" -D GID_MID=100 -D HTTPD_USER="apache" -D LOG_EXEC="/var/log/httpd/suexec_log" -D SAFE_PATH="/usr/local/bin:/usr/bin:/bin" -D UID_MID=100 -D USERDIR_SUFFIX="public_html" It's very hard to comply to unknown issues since no one seems to care much for apache2. Maybe issues would start pouring in if an Mandrake employee took over my apache2 packages, or..., if Mandrake would employ me so it's more "official"..., I really don't know... I think you're the third or fourth person mentioning apache2 in this forum since I introduced it (and that's about 3 months ago!!!)... Chears. -- Regards // Oden Eriksson Deserve-IT Networks -> http://d-srv.com
