Hi,
The attached patch is some kind of "proof of concept" to solve a security
related problem I have with suPHP.
Problem: Run script with file/directory owner threatens the user's files.
suPHP is intended to run a PHP script using a specific process owner. When
configured in "owner" or "parano
Hi,
Sorry, there was a copy&paste error in the attached patch. Here's a fixed
version.
Best regards,
Roland
diff --unified -r suphp-0.7.1/src/apache2/mod_suphp.c suphp-0.7.1.new/src/apache2/mod_suphp.c
--- suphp-0.7.1/src/apache2/mod_suphp.c 2007-03-14 15:50:55.0 +0100
+++ suphp-0.7.1.n
Hi,
Am Donnerstag 22 Juli 2010, 14:58:20 schrieb Uwe Baumbach:
> is it possible to configure suPHP so, that a scripts would be executed
> under following circumstances: - script directory ist owned by user A of
> group GRP-A
> - in the directory some PHP-scripts belongs to user A of GRP-A, other t