[Date Prev][Date Next][Thread Prev][Thread Next][Minivend by date ][Minivend by thread ]

Re: SuExec/DBI users: how to configure a catalog? (Answering my own question)

To: minivend-users@minivend.com
Subject: Re: SuExec/DBI users: how to configure a catalog? (Answering my own question)
From: Mark Stosberg <mark@summersault.com>
Date: Tue, 02 Feb 1999 17:08:10 -0500
Organization: Summersault
References: <36B6AD60.AB260A49@summersault.com>
Reply-To: minivend-users@minivend.com
Sender: owner-minivend-users@minivend.com

******    message to minivend-users from Mark Stosberg <mark@summersault.com>     ******


If I confused any of you by the previous message, I'm sorry. It is quite
possible to run the tlink/vlink script (simple.cgi) as a user other than
the minivend user (at least in "INET" mode). I had a misconfiguration
before that prevented it from working.

 -mark



Mark Stosberg wrote:
> 
> ******    message to minivend-users from Mark Stosberg <mark@summersault.com>     ******
> 
> Hello!
> 
>  I work at a web hosting firm, and we plann to host multiple Minivend accounts,
> using SuExec and DBI for secure access to our Postgres database. I'd
> like to inquire what an optimum Minivend SuExec setup is.
> 
>   I realize if I have the SuExec user and group on the server set run
> tlink/vlink (simple.cgi) as "username" then it can't talk to the
> minivend server, which runs as mvend, because simple.cgi must be owned
> by "username" to run.
> 
>  Which leads me into a second  possible set up, in which the SuExec user
> and group are set to "mvend" so simple.cgi can talk to the minivend
> server. DBI Authetication information could be kept  within each
> catalog.cfg file. However, I have concerns that if all clients scripts
> are being run as "mvend" I may have a security holes with people being
> able to get into each others databases. Am I offbase? What are other
> SuExec/DBI users doing that works and is secure?
> 
>    -mark
> http://flip.summersault.com
> -
> To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
> email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
> Archive of past messages: http://www.minivend.com/minivend/minivend-list

-- 
http://flip.summersault.com
-
To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list

References:
- SuExec/DBI users: how to configure a catalog?
  - From: Mark Stosberg <mark@summersault.com>

Prev by Date: need for help
Next by Date: Fixed: IE4 causing "Difficulty interacting with browser"
Prev by thread: SuExec/DBI users: how to configure a catalog?
Next by thread: problems with databases
Index(es):
- Date
- Thread