[Date Prev][Date Next][Thread Prev][Thread Next][Interchange by date ][Interchange by thread ]

[ic] suid vs. suexec with limited cgi-bin contents

Subject: [ic] suid vs. suexec with limited cgi-bin contents
From: interchange-users@interchange.redhat.com (John Young)
Date: Tue Mar 5 17:55:00 2002
References: <200203051701.g25H1GJ29320@interchange.redhat.com>

What is considered better from a security standpoint (yeah,
I know there are a lot of variables even in this comparison):

A) vlink as the only file in cgi-bin, suid, owned by the
   interchange user, and a-w on it and the cgi-bin directory.

-or-

B) same as above, but apache with suexec, and no suid on vlink.


Thanks,
John Young

Follow-Ups:
- [ic] suid vs. suexec with limited cgi-bin contents
  - From: interchange-users@interchange.redhat.com (Jon Jensen)

Prev by Date: [ic] comparing two form values with a profile
Next by Date: [ic] Mac OSX viable as a development platform?
Previous by thread: [ic] comparing two form values with a profile
Next by thread: [ic] suid vs. suexec with limited cgi-bin contents
Index(es):
- Date
- Thread