Received: (qmail 89028 invoked by uid 501); 7 Dec 2001 17:23:55 -0000 Message-Id: <20011207172355.89027.qmail@apache.org> Date: 7 Dec 2001 17:23:55 -0000 From: Greg Lindahl Reply-To: lindahl@pbm.com To: submit@bugz.apache.org Subject: Suexec should be disabled via the conf file, not moving a binary X-Send-Pr-Version: 3.110 >Number: 8989 >Category: suexec >Synopsis: Suexec should be disabled via the conf file, not moving a binary >Confidential: no >Severity: non-critical >Priority: medium >Responsible: apache >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: apache >Arrival-Date: Fri Dec 07 09:30:00 PST 2001 >Closed-Date: >Last-Modified: >Originator: lindahl@pbm.com >Release: 1.3.22 >Organization: apache >Environment: cross platform problem >Description: The instructions for suexec say that in order to disable it, you should move the binary to a different name. So admin A does that. Admin B comes along and sees a new Apache release, to fix a security hole. Admin B installs the new Apache, and doesn't realize that she needs to move the binary to a new name. Voila, suexec is now enabled, user scripts break, chaos. suexec should be disablable in the conf file. Then you can install new versions and not break anything. Also, then machines with many virtual servers can have a per server suexec config. >How-To-Repeat: >Fix: Add an option to the httpd conf file to explicitly enable or disable suexec, with a default of enabled. >Release-Note: >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, you need] [to include in the Cc line and make sure the] [subject line starts with the report component and number, with ] [or without any 'Re:' prefixes (such as "general/1098:" or ] ["Re: general/1098:"). If the subject doesn't match this ] [pattern, your message will be misfiled and ignored. The ] ["apbugs" address is not added to the Cc line of messages from ] [the database automatically because of the potential for mail ] [loops. If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request from a ] [developer. Reply only with text; DO NOT SEND ATTACHMENTS! ]