You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@httpd.apache.org by Randy Terbush <ra...@zyzzyva.com> on 1997/06/26 03:21:18 UTC
Re: apache 1.2.0 (fwd)
suexec will not (as distributed) process a request for root
privledges. In fact, it refuses execution for process IDs and group
IDs less than compiled in defaults. Agreable danger though.
I also have some similar code that will not only include files to
be processed for configs, but will also recurse a directory looking
for config files. It's a handy way to partition out access rights
to certain files.
> Hi Curtis,
>
> Cliff Skolnick and I talked about this exact thing recently (MS Front
> Page). The problem is that the file you allow them to include can include
> any command. "User root" for example, could be problematic. So this
> doesn't increase your security at all.
>
> The only solution we could come up with was to allow frontpage to write to
> some file, which you then process with an anal perl script that filters
> exactly the commands it is supposed to use and tacks them into the main
> config. You have to fire that script off with the right uid, but that's a
> different problem.
>
> Dean
>
> On Tue, 24 Jun 1997, Rob Hartill wrote:
>
> >
> > ---------- Forwarded message ----------
> > Date: Tue, 24 Jun 1997 18:34:58 -0400 (EDT)
> > From: "Curtis Wilbar [STAFF]" <cu...@ici.net>
> > To: apache-bugs@apache.org
> > Cc: curtis@ici.net
> > Subject: apache 1.2.0
> >
> >
> > This is not a bug report, but what I think will be a very nice enhancement
> > to Apache 1.2.0.
> >
> > This modification comes in real handy when running Apache 2.0 with suexec
> > as the httpd server for Microsoft Front Page extensions.
> >
> > It allows for the sytx of
> >
> > Include filename
> >
> > in a *.conf file.
> >
> > This allows the httpd.conf file to contain
> > separate includes for each virtual domain.
> > Those included files can all have separate owners allowing child web sites
> > (a MS Front Page feature) to work (otherwise you'd have to follow MS's
> > security model which is a closed server with every file owned by the httpd
> > process UID).
> >
> > It's a failry simple modification.... the majority of the time was spent
> > looking at how the existing code worked.
> >
> > I hope the modification will come in handy to others, and if there is
> > a list of contributors in the product, I'd mearly like a mention ...
> >
> > I'd appreciate hearing your input on this feature...
> >
> > Here is a diff of my mods and the Apache 1.2.0 http_core.c file:
> >
> > % diff http_core.c http_core.c.orig
> > 1149,1154d1148
> > < const char *process_include_file (cmd_parms *cmd, void *dummy, char *arg)
> > < {
> > < process_resource_config(cmd->server, arg, cmd->pool, cmd->temp_pool);
> > < return NULL;
> > < }
> > <
> > 1189d1182
> > < { "Include", process_include_file, NULL, RSRC_CONF, TAKE1, "The filename of the include file"},
> >
> >
> >
> >