> The Apache log files are still created as root, then. So any user with > access to httpd.conf can use Apache to e.g. overwrite /etc/passwd. Wouldn't it be possible to create the log files with the username and group of the user that Apache is going to be running as before starting it up? That way they will be owned by a non-root user and the ownership wouldn't change?? Just my thoughts Darryl
- Re: Rebooting with WebAdmin scripts Simon Garner
- Re: Rebooting with WebAdmin scripts Urivan Saaib
- Re: Rebooting with WebAdmin script... Simon Garner
- if root compromised in a VS... Marcos Rubinstein ALPA WWW
- Re: if root compromised in a VS... Nick Burrett
- Re: if root compromised in a VS... Ben Kennish
- Re: if root compromised in a VS... Nick Burrett
- Re: if root compromised in a VS... jimmy
- Re: if root compromised in a VS... Nick Burrett
- Re: Rebooting with WebAdmin script... Daniel Brown
- Re: Rebooting with WebAdmin scripts Darryl Ross
- Re: Rebooting with WebAdmin scripts Simon Garner
- Re: Rebooting with WebAdmin scripts Urivan Saaib
- Re: Rebooting with WebAdmin script... Simon Garner
- Re: Rebooting with WebAdmin script... Urivan Saaib
- RE: Rebooting with WebAdmin script... Tim Sellar
