Re: Wrapping CGI and PHP Scripts
Any recommendations on how to do this with PHP - without needing the #!/usr/bin/php at the top and without using PHP Safe mode - which is a lame workaround...? -- Anand - Original Message - From: Dan MacNeil [EMAIL PROTECTED] To: Jason Lim [EMAIL PROTECTED] Cc: Anand Atreya [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, July 02, 2003 9:33 PM Subject: Re: Wrapping CGI and PHP Scripts If only this could be in a configuration file.. What is worse is that every time there is a security patch for apache, we break our hand compiled suexec On Thu, 3 Jul 2003, Jason Lim wrote: Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
On July 2, 2003 09:34 pm, Anand Atreya wrote: Any recommendations on how to do this with PHP - without needing the #!/usr/bin/php at the top and without using PHP Safe mode - which is a lame workaround...? I haven't tried this but it appears that you can do what you're looking for with the combination of mod_fastcgi and suexec, see http://www.fastcgi.com/docs/faq.html#PHP -- Fraser Campbell [EMAIL PROTECTED] http://www.wehave.net/ Halton Hills, Ontario, Canada Debian GNU/Linux -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
Any recommendations on how to do this with PHP - without needing the #!/usr/bin/php at the top and without using PHP Safe mode - which is a lame workaround...? -- Anand - Original Message - From: Dan MacNeil [EMAIL PROTECTED] To: Jason Lim [EMAIL PROTECTED] Cc: Anand Atreya [EMAIL PROTECTED]; debian-isp@lists.debian.org Sent: Wednesday, July 02, 2003 9:33 PM Subject: Re: Wrapping CGI and PHP Scripts If only this could be in a configuration file.. What is worse is that every time there is a security patch for apache, we break our hand compiled suexec On Thu, 3 Jul 2003, Jason Lim wrote: Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
On July 2, 2003 09:34 pm, Anand Atreya wrote: Any recommendations on how to do this with PHP - without needing the #!/usr/bin/php at the top and without using PHP Safe mode - which is a lame workaround...? I haven't tried this but it appears that you can do what you're looking for with the combination of mod_fastcgi and suexec, see http://www.fastcgi.com/docs/faq.html#PHP -- Fraser Campbell [EMAIL PROTECTED] http://www.wehave.net/ Halton Hills, Ontario, Canada Debian GNU/Linux
Wrapping CGI and PHP Scripts
Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
If only this could be in a configuration file.. What is worse is that every time there is a security patch for apache, we break our hand compiled suexec On Thu, 3 Jul 2003, Jason Lim wrote: Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
We use the shbang... On Wed, 2 Jul 2003, Anand Atreya wrote: Any recommendations on how to do this with PHP - without needing the #!/bin/sh echo DEFANGED.0 exit #!/usr/bin/php at the top and without using PHP Safe mode - which is a lame workaround...? -- Anand - Original Message - From: Dan MacNeil [EMAIL PROTECTED] To: Jason Lim [EMAIL PROTECTED] Cc: Anand Atreya [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, July 02, 2003 9:33 PM Subject: Re: Wrapping CGI and PHP Scripts If only this could be in a configuration file.. What is worse is that every time there is a security patch for apache, we break our hand compiled suexec On Thu, 3 Jul 2003, Jason Lim wrote: Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Wrapping CGI and PHP Scripts
Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya
Re: Wrapping CGI and PHP Scripts
Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya
Re: Wrapping CGI and PHP Scripts
Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
If only this could be in a configuration file.. What is worse is that every time there is a security patch for apache, we break our hand compiled suexec On Thu, 3 Jul 2003, Jason Lim wrote: Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Wrapping CGI and PHP Scripts
We use the shbang... On Wed, 2 Jul 2003, Anand Atreya wrote: Any recommendations on how to do this with PHP - without needing the #!/bin/sh echo DEFANGED.0 exit #!/usr/bin/php at the top and without using PHP Safe mode - which is a lame workaround...? -- Anand - Original Message - From: Dan MacNeil [EMAIL PROTECTED] To: Jason Lim [EMAIL PROTECTED] Cc: Anand Atreya [EMAIL PROTECTED]; debian-isp@lists.debian.org Sent: Wednesday, July 02, 2003 9:33 PM Subject: Re: Wrapping CGI and PHP Scripts If only this could be in a configuration file.. What is worse is that every time there is a security patch for apache, we break our hand compiled suexec On Thu, 3 Jul 2003, Jason Lim wrote: Does anyone know what the default document root is for the Debian configuration of suexec? /var/www/ To change the document root of suexec you need to recompile suexec see: http://communitysoftwarelab.org/sys/project.d/suexec.d/install.txt If only this could be in a configuration file.. ### On Wed, 2 Jul 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
CGI and PHP Scripts
Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host,not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya
Re: CGI and PHP Scripts
Anand, Maybe try looking at setting PHP to 'safe mode' Cheers Rudi. Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host,not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya
Re: CGI and PHP Scripts
(I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is /var/www If you are setting up apache from scratch, I'd use the default as it avoids much hassle w/ suexec. If you want to use a different default docroot you need to recompile suexec For our approach see: http://csl.ltc.org/sys/project.d/suexec.d/install.txt On Tue, 24 Jun 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya
Re: CGI and PHP Scripts
Anand, Maybe try looking at setting PHP to 'safe mode' Cheers Rudi. Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host,not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya
Re: CGI and PHP Scripts
(I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is /var/www If you are setting up apache from scratch, I'd use the default as it avoids much hassle w/ suexec. If you want to use a different default docroot you need to recompile suexec For our approach see: http://csl.ltc.org/sys/project.d/suexec.d/install.txt On Tue, 24 Jun 2003, Anand Atreya wrote: Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host, not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
CGI and PHP Scripts
Hi, I have just recently begun using Debian and am in the process of migrating a FreeBSD 4.4 server over to it. This server had many different users and allowed them to execute CGI and PHP scripts in their public_html folder (or any folder under it) as their own user, not as the user of the webserver, using mod_cgiwrap and mod_phpcgiwrap (from Steven Haryanto). The site where this was located (http://steven.haryan.to/mod_cgiwrap/mod_cgiwrap.html) no longer exists, and in hindsight, it seems as if mod_cgiwrap was not a very secure solution to begin with. Does anybody have any recommendations on how to set up a virtual hosting Apache server such that users can have CGI and PHP scripts execute as themselves, without having to put #!/usr/bin/php at the top of php scripts, and that is completely transparent to the user, also allowing them to place scripts anywhere in their document root? (I have tried using suexec as it is installed with the Debian Apache package, but when I tried to execute a script in a virtual host,not using the www.domain.com/~username address, it did not execute the script, saying it was not in the document root. Does anyone know what the default document root is for the Debian configuration of suexec?) Thanks a lot. -- Anand Atreya
