How do you enable SSI for user a directory on Apache 1.3? I get the following in /var/log/httpd/suexec.log [2002-11-02 22:11:30]: info: (target/actual) uid: (pep/pep) gid: (users/users) cmd: date +'%a %e %b %Y, %H.%M' [2002-11-02 22:11:30]: error: cannot stat program: (date +'%a %e %b %Y, %H.%M') However, the same html with SSI works OK when placed in the root directory (htdocs).
On Mon, 4 Nov 2002 17:26:27 +0100
"Pep Serrano"
How do you enable SSI for user a directory on Apache 1.3?
I get the following in /var/log/httpd/suexec.log
[2002-11-02 22:11:30]: info: (target/actual) uid: (pep/pep) gid: (users/users) cmd: date +'%a %e %b %Y, %H.%M' [2002-11-02 22:11:30]: error: cannot stat program: (date +'%a %e %b %Y, %H.%M')
However, the same html with SSI works OK when placed in the root directory (htdocs).
Put +Includes in the options in the httpd.conf file
How do you enable SSI for user a directory on Apache 1.3?
I get the following in /var/log/httpd/suexec.log
[2002-11-02 22:11:30]: info: (target/actual) uid: (pep/pep) gid: (users/users) cmd: date +'%a %e %b %Y, %H.%M' [2002-11-02 22:11:30]: error: cannot stat program: (date +'%a %e %b %Y, %H.%M')
However, the same html with SSI works OK when placed in the root
Hi zentara & list, Actually I do use "+Includes". The trouble seems to come from suexec... directory
(htdocs).
Put +Includes in the options in the httpd.conf file
AllowOverride All Options MultiViews Indexes SymLinksIfOwnerMatch +Includes <Limit GET POST OPTIONS PROPFIND>
On Tue, 5 Nov 2002 09:54:33 +0100
"Pep Serrano"
Hi zentara & list,
Actually I do use "+Includes". The trouble seems to come from suexec...
I don't use includes myself. Maybe just disable suexec? Do you really need it. Just rename it. When apache starts, it uses suexec if it finds it, otherwise not. All suexec does is let cgi in the user dirs run as the user instead of as wwwrun. Alot of people think that it's bad , but it's useful in certain cases.
How do you enable SSI for user a directory on Apache 1.3?
I get the following in /var/log/httpd/suexec.log
[2002-11-02 22:11:30]: info: (target/actual) uid: (pep/pep) gid: (users/users) cmd: date +'%a %e %b %Y, %H.%M' [2002-11-02 22:11:30]: error: cannot stat program: (date +'%a %e %b %Y, %H.%M')
-- use Perl; #powerful programmable prestidigitation
Ei hello back again! Sorry for the late answers guys... I've been so busy. So I followed zentara's advice and moved out suexec so Apache can not find it... Then the SSI works. Now, what can I do to use suexec together with SSI? Is there anything I need to configure? Thanks. On Tuesday 05 November 2002 13:09, zentara wrote:
I don't use includes myself. Maybe just disable suexec? Do you really need it. Just rename it. When apache starts, it uses suexec if it finds it, otherwise not. All suexec does is let cgi in the user dirs run as the user instead of as wwwrun. Alot of people think that it's bad , but it's useful in certain cases.
I get the following in /var/log/httpd/suexec.log
[2002-11-02 22:11:30]: info: (target/actual) uid: (pep/pep) gid: (users/users) cmd: date +'%a %e %b %Y, %H.%M' [2002-11-02 22:11:30]: error: cannot stat program: (date +'%a %e %b %Y, %H.%M')
On Mon, 11 Nov 2002 18:24:23 +0100
Pep Serrano
So I followed zentara's advice and moved out suexec so Apache can not find it... Then the SSI works.
Now, what can I do to use suexec together with SSI? Is there anything I need to configure?
I get the following in /var/log/httpd/suexec.log
[2002-11-02 22:11:30]: info: (target/actual) uid: (pep/pep) gid: (users/users) cmd: date +'%a %e %b %Y, %H.%M' [2002-11-02 22:11:30]: error: cannot stat program: (date +'%a %e %b %Y, %H.%M')
You might want to go to apache.org and search for the docs on suexec.
That last time I read it, suexec will only run an executable if it is owned by
the user of the home directory. That's what it's doing with the (target/actual)
stuff above. The user and group must match the home directory's owner.
There are some other permissions restrictions too, but I don't recall them
offhand.
So that said, the "date" command is probably owned by root/root not
your user. So it can't "stat" the command, and won't run.
I guess you copy the "date" command to the user's homedir and make
the user/group the owner. Then if you put +Includes in the httpd.conf for the
You might want to go to apache.org and search for the docs on suexec. That last time I read it, suexec will only run an executable if it is owned by the user of the home directory. That's what it's doing with the (target/actual) stuff above. The user and group must match the home directory's owner. There are some other permissions restrictions too, but I don't recall them offhand.
So that said, the "date" command is probably owned by root/root not your user. So it can't "stat" the command, and won't run.
I guess you copy the "date" command to the user's homedir and make the user/group the owner. Then if you put +Includes in the httpd.conf for
Hello all, Zentara was absolutely right. As a conclusion I would remark the following points: - Apache uses suexec on SuSE (if suexec is installed). - HTML with SSI that belong to a user web directory will only execute scripts and binaries that belong to that user. - You can still place SSIs out of the user directories to access any binaries you want. I did solve my problem in another way, now I am using the variable DATE_LOCAL instead of calling the "date" command (and it works for any user): Today's</a> (<!--#echo var="DATE_LOCAL" -->)<br> Thanks Zentara for your help. Pep Serrano. the
; that should let SSI run the date command with suexec enabled. That would be the way I would first try it. But there may be better instructions on apache.org in the suexec docs.
participants (2)
-
Pep Serrano
-
zentara