or of course, you could use the 'group's feature and put the user apache runs as in the right groups and give that group the permissions to run the files you want in /sbin...
On Fri, 2002-04-05 at 14:12, Kee Hinckley wrote: > At 5:39 PM -0800 4/4/02, bo wrote: > >How do I allow those files accessible from the CGI script? > > The problem has nothing to do with Apache. The user that the Apache > process is running as does not have access to those files. You need > to either open up the permissions on /sbin to more users (probably > not a good idea), or change who Apache runs as (not really a terribly > good idea either), or make some custom commands that do what you > want, but can only be run by Apache, and only with arguments that you > have very carefully specified (rather difficult). Or you could go > with security-by-obscurity model and make private versions of the > commands that can only be read and run by the Apache user. > > -- > > Kee Hinckley - Somewhere.Com, LLC > http://consulting.somewhere.com/ > [EMAIL PROTECTED] > > I'm not sure which upsets me more: that people are so unwilling to accept > responsibility for their own actions, or that they are so eager to regulate > everyone else's. > >
