>> "KB" == Karsten Bolding <[EMAIL PROTECTED]> writes:
KB> And finally added www-data to shadow group
KB> addgroup www-data shadow
Be careful about this. Now everything running as www-data (webserver,
maybe cgis) can read /etc/shadow.
Even if noone can execute CGIs with the webserver uid or use dynamic
content (SSI), it is still possible that a CGI has a security hole. So
it is best to minimize the access www-data has.
So you better look for another solution. Sorry, I can't help you more,
but I don't run apache.
Ciao,
Martin
