资 源 简 介
What is mod_suid2 ?
mod_suid2 is Suexec module for apache-2.0.
Apache2 includes mod_suexec. if you enable this module, you can run CGI or SSI programs under user"s privileges. (not as apache, nobody, wwwuser)
For example, if CGI"s owner is "user A", programs run as "user_a" not as "apache". This is done by /usr/local/apache2/bin/suexec wrapper program.
because wrapper program is required, mod_suexec can run only CGI or SSI with program owner"s privilege, and can"t run Apache modules, (i.e. WebDAV or PHP). these module will run as User or Group in httpd.conf.
The problem is, if you have a large number of virtual hosts, some users could read/write other"s file or directory because all programs run as apache user.
To solve this, Apache2 has Perchild MPM, but this is "NOT" stable yet.
With apache-1.3, you can install mod_become to run httpd process under user"s right. But I could not find