take a look cgiwrap On Sun, 24 Feb 2002, Casper Gondelach wrote:
> Hi there, > > I am searching now for weeks to find the best way to secure my webserver. I want >users to be able to run cgi and php scripts. For the securtity all the scripts have >to run under there own names. All the users that may use scripts, have a virtual host. > > I tried with suexec. It works perfect, no problem. But at the tot of every php >script, you have to add #!/usr/bin/php, witch gives a lot of trouble to users, by >example when scripts are run by webserver from outside and the same script is also >included (that the line should not exist). I couldn't find with the suexec >configuration how to "solve" this. Anybody has an idea. > > Next thing i tried was the cgiwrapper. With a patch you can make 2, a cgiwrap and a >php-cgiwrap, and then the first line isn't nesesarry anymore. Problem now, He looks >after directory names, so all virtualhosts doesn't work, because he can't find the >right user. > > The question now. What is the best and most secure way to solve this? > > Greetings, > > Casper Gondelach > _____________________________________________________________ Sebastian Ezequiel Ovide -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
