Received: (qmail 28783 invoked by uid 2012); 11 Jun 1999 04:47:38 -0000 Message-Id: <19990611044738.28782.qmail@hyperreal.org> Date: 11 Jun 1999 04:47:38 -0000 From: Jon Drukman Reply-To: jsd@gamespot.com To: apbugs@hyperreal.org Subject: suexec ignores User directive in section X-Send-Pr-Version: 3.2 >Number: 4567 >Category: suexec >Synopsis: suexec ignores User directive in section >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: closed >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Thu Jun 10 21:50:01 PDT 1999 >Closed-Date: Mon Oct 30 19:15:40 PST 2000 >Last-Modified: Mon Oct 30 19:15:40 PST 2000 >Originator: jsd@gamespot.com >Release: 1.3.6 >Organization: >Environment: redhat linux 5.2, gcc >Description: the documentation for suexec states that if you put a User and Group directive in a section then suexec will use those values as the target uid/gid to switch to before executing the script. this is not happening... it's only looking at the group value. [1999-06-10 21:30:18]: uid: (annef/nobody) gid: (annef/annef) cmd: lslocal.cgi [1999-06-10 21:30:18]: target uid/gid (999/501) mismatch with directory (501/501) or program (501/501) target uid should be 501/501 user & group in the main server are set to nobody (999) user & group in the virtualhost are set to annef (501) >How-To-Repeat: >Fix: >Release-Note: >Audit-Trail: State-Changed-From-To: open-feedback State-Changed-By: coar State-Changed-When: Fri Jan 7 14:34:05 PST 2000 State-Changed-Why: I believe this is fixed as of Apache 1.3.9. Please upgrade and try to reproduce the problem. Comment-Added-By: coar Comment-Added-When: Wed Jun 7 11:59:13 PDT 2000 Comment-Added: [This is a standard response.] This Apache problem report has not been updated recently. Please reply to this message if you have any additional information about this issue, or if you have answers to any questions that have been posed to you. If there are no outstanding questions, please consider this a request to try to reproduce the problem with the latest software release, if one has been made since last contact. If we don't hear from you, this report will be closed. If you have information to add, BE SURE to reply to this message and include the apbugs@Apache.Org address so it will be attached to the problem report! State-Changed-From-To: feedback-closed State-Changed-By: slive State-Changed-When: Mon Oct 30 19:15:39 PST 2000 State-Changed-Why: [This is a standard response.] No response from submitter, assuming issue has been resolved. >Unformatted: [In order for any reply to be added to the PR database, you need] [to include in the Cc line and make sure the] [subject line starts with the report component and number, with ] [or without any 'Re:' prefixes (such as "general/1098:" or ] ["Re: general/1098:"). If the subject doesn't match this ] [pattern, your message will be misfiled and ignored. The ] ["apbugs" address is not added to the Cc line of messages from ] [the database automatically because of the potential for mail ] [loops. If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request from a ] [developer. Reply only with text; DO NOT SEND ATTACHMENTS! ]