-------- Original Message -------- Subject: suexec different-owner patch Date: 2016-03-04 18:33 From: [email protected] To: [email protected] Reply-To: [email protected]
Here is my first try at a patch for my suggestion, modified from httpd 2.2.31. It works to my satisfaction, able to switch to a UID other than the file's owner, while still strictly matching the UID and GID of the file against known values. I make no guarantees of correctness or bug-freeness however. The changes are so simple though, I hope there's nothing flagrantly wrong.
It uses another option, "SuexecFileGroup", which independently defines the specific user and group the file must belong to. If you don't define it, it defaults to the old behavior. I re-used suexec's own sanity checking on the new option where it seemed appropriate.
Criticisms, please?
specialsuexec.patch.gz
Description: GNU Zip compressed data
