ID: 16287 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Open +Status: Bogus Bug Type: Feature/Change Request Operating System: RH7.2 PHP Version: 4.1.2 New Comment:
This is part of Apache &/or the web server responsiblity, doing it in PHP, would (apart from duplicate resources), be a bit security headache.. I believe it is a feature of Apache 2. If you are looking at cgi's, you could consider the php-cgiwrap that is available on the net somewhere. Its not really (AFAIK) ever going to be a php feature. Previous Comments: ------------------------------------------------------------------------ [2002-03-26 09:16:52] [EMAIL PROTECTED] ooops should've changed the status before... ------------------------------------------------------------------------ [2002-03-26 09:12:48] [EMAIL PROTECTED] Those functions are very good, except they cannot be used in a hosting context where the users are not root... There should be a mechanism like Apache has for .cgi's (per virtual host or location) or dynamically establishing the owner via the home directory lookup. ------------------------------------------------------------------------ [2002-03-26 09:08:19] [EMAIL PROTECTED] http://php.net/posix_setuid ------------------------------------------------------------------------ [2002-03-26 09:01:24] [EMAIL PROTECTED] PHP already has functions to swap uids and guids, posix_* (see www.php.net/posix). Derick ------------------------------------------------------------------------ [2002-03-26 08:59:44] [EMAIL PROTECTED] There is a need for suexec/suid type functionality for PHP scripts - switch of ownership conext in a secure environment. Is this going to happen? ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=16287&edit=1
