> -----Ursprüngliche Nachricht----- > Von: "Plüm, Rüdiger, VF-Group" > Gesendet: Freitag, 14. November 2008 14:58 > An: dev@httpd.apache.org > Betreff: Re: Introducing mod_privileges for Apache HTTPD > > > > > -----Ursprüngliche Nachricht----- > > Von: Nick Kew > > Gesendet: Freitag, 14. November 2008 11:22 > > An: webstack-discuss; dev@httpd.apache.org > > Betreff: Introducing mod_privileges for Apache HTTPD > > > > I've just introduced mod_privileges to Apache HTTPD trunk. > > > > This is a platform-specific module for Solaris 10 and OpenSolaris, > > that makes the webserver privileges(5)-aware. This enables the > > server to be run with enhanced security, and with different > > settings per virtual host. > > > > The feature likely to be of most interest is that it enables > > different virtual hosts to run under different Unix user and > > group IDs, using the VHostUser and VHostGroup directives. > > This is the capability once promised by the "perchild" MPM. > > > > It has one major drawback: it is not suitable for a threaded MPM. > > However, it is ideally suited for use with PHP, which of course > > also precludes threads. It should also be of interest to anyone > > hosting other in-process scripting environments such as mod_perl, > > mod_python or mod_ruby, or application modules. > > > > http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/arch/un > > ix/mod_privileges.c > > http://svn.apache.org/viewvc/httpd/httpd/trunk/docs/manual/mod > > /mod_privileges.xml > > It currently breaks the build on Linux as mod_privileges is build > by default. >
Fixed in r714007. mod_privileges is no longer build by default. You need to add --enable-privileges to your configure call to enable it. We should add some autofoo magic to check whether all prerequisites are fulfilled. Regards Rüdiger
