Severity: important Tags: patch Hi,
I had this problem today, and I believe I found a bug. Our multi-user server setup is using suexec + mod_fcgid and several virtual hosts. When debugging this issue, I came to the conclusion that sconf->vhost_id was always equal to 1 while current_node->vhost_id would be different from 1, depending on the virtual host used. I believe one should use command->vhost_id (as the other checks in the same if sentence) for correct grouping of processes. Due to this bug, the check for FcgidMaxProcessesPerClass setting later in the code would never be reached in the case of vhost_id != 1. I'm setting the severity of this bug to important because this let's a user go above the defined max processes per class in a multi-user server, possibly causing a denial-of-service to other users. Best Regards. Miguel Cabeça
20_honor_FcgidMaxProcessesPerClass_setting.dpatch
Description: Binary data
