Preserved Topic: Nice to meet you, suexec. How do you work? (Page 1 of 1) $Pages that link to <a href="https://ozoneasylum.com/backlink?for=21018" title="Pages that link to Preserved Topic: Nice to meet you, suexec. How do you work? (Page 1 of 1)" rel="nofollow" >Preserved Topic: Nice to meet you, suexec. How do you work? <span class="small">(Page 1 of 1)</span>\$

Wes Paranoid (IV) Mad Scientist From: Inside THE BOX Insane since: May 2000	posted 03-25-2002 01:53 Installed Movable Type 2.0 recently. Beautiful! Works wonderfully. However, as the installation manual told me, I had to set permissions on my weblog directory as 777. I know this isn't secure. However, the help file offers this advice. Now, I uncommented the settings in mt.cfg as it specified. However, I have absolutely no idea how to run something under this "suexec" creature.
JKMabry Maniac (V) Inmate From: out of a sleepy funk Insane since: Aug 2000	posted 03-25-2002 06:05 the way Dreamhost runs things, they run suexec, you just CHMOD files at 755 when they call for 777. Secure, running as you. That's the depth of my knowledge on it, sorta. by the way, look at this: http://www.dreamhost.com/comparison.html ! I was about leave Dreamhost for greener pastures. You can now get the tailkickin Dreamhost service with MySQL and full CGI on even the smallest plan. This is good. Jason
DocOzone Maniac (V) Lord Mad Scientist Sovereign of all the lands Ozone and just beyond that little green line over there... From: Stockholm, Sweden Insane since: Mar 1994	posted 03-25-2002 06:45 Hmm, I used to use cgi-wrap over at VISI (where the ozone pages live) before I got special treatment and a "full CGI/whatever I need" package, heh. Instructions for this were at http://www.visi.com/support/webpages/cgiwrap.html - they were pretty simple. I've never used suexec, though it sounds like a good idea, running cgi scripts as nobody can be dangerous, fer sure. What is it about Dreamhost? I just paid money to add MySQL to my account, so of course it become free right after that! This has happened before, they figure that anything I'm willing to pay for must be important enough to offer to everyone for nothing, heh. (They treat me good, no doubt! I just like to bitch. ;-) Your pal, -doc-
Wes Paranoid (IV) Mad Scientist From: Inside THE BOX Insane since: May 2000	posted 03-25-2002 09:16 I sent HostRocket a trouble ticket asking for help on the issue. In the meantime, I'll look at cgiwrap and see if I can pull that off. But, if all fails, how dangerous is it to have a directory chmoded 777?
lallous Paranoid (IV) Inmate From: Lebanon Insane since: May 2001	posted 03-25-2002 11:23 having a 777, can allow a user on the same host to write to your directory...probably writing scripts; read your own scripts; etc... a bit bad i believe.
Wes Paranoid (IV) Mad Scientist From: Inside THE BOX Insane since: May 2000	posted 03-25-2002 21:08 Well, here's what I got back from HostRocket. quote: Hi, SUEXEC is not enabled on the server you are on. Since its only a log directory, I wouldnt worry about it. -Justin Mazzi HostRocket.com Support
Wes Paranoid (IV) Mad Scientist From: Inside THE BOX Insane since: May 2000	posted 03-27-2002 08:07 Well, despite the so-called support staff's insistance that it's >ahem< "only" a log directory, I continued to seek a solution. I looked into cgiwrap as you suggested, Doc, and discovered that I can, through my control panel, set up a directory call /scgi-bin/, which appears to run scripts that reside in it under /usr/local/cpanel/cgi-sys/scgiwrap. Unfortunately, the scripts cannot be in a subdirectory of /scgi-bin/. So, if I want more than one software package to work this way, I'd have to lump all the scripts into that directory. So, now I'm trying to determine another way to call on scgiwrap.

Preserved Topic: Nice to meet you, suexec. How do you work? (Page 1 of 1) $Pages that link to <a href="https://ozoneasylum.com/backlink?for=21018" title="Pages that link to Preserved Topic: Nice to meet you, suexec. How do you work? (Page 1 of 1)" rel="nofollow" >Preserved Topic: Nice to meet you, suexec. How do you work? <span class="small">(Page 1 of 1)</span>\$

Wes
Paranoid (IV) Mad Scientist

From: Inside THE BOX
Insane since: May 2000

posted 03-25-2002 01:53

Installed Movable Type 2.0 recently. Beautiful! Works wonderfully.

However, as the installation manual told me, I had to set permissions on my weblog directory as 777. I know this isn't secure.

However, the help file offers this advice.

Now, I uncommented the settings in mt.cfg as it specified. However, I have absolutely no idea how to run something under this "suexec" creature.

JKMabry
Maniac (V) Inmate

From: out of a sleepy funk
Insane since: Aug 2000

posted 03-25-2002 06:05

the way Dreamhost runs things, they run suexec, you just CHMOD files at 755 when they call for 777. Secure, running as you. That's the depth of my knowledge on it, sorta.

by the way, look at this: http://www.dreamhost.com/comparison.html ! I was about leave Dreamhost for greener pastures. You can now get the tailkickin Dreamhost service with MySQL and full CGI on even the smallest plan. This is good.

Jason

DocOzone
Maniac (V) Lord Mad Scientist
Sovereign of all the lands Ozone and just beyond that little green line over there...

From: Stockholm, Sweden
Insane since: Mar 1994

posted 03-25-2002 06:45

Hmm, I used to use cgi-wrap over at VISI (where the ozone pages live) before I got special treatment and a "full CGI/whatever I need" package, heh. Instructions for this were at http://www.visi.com/support/webpages/cgiwrap.html - they were pretty simple. I've never used suexec, though it sounds like a good idea, running cgi scripts as nobody can be dangerous, fer sure.

What is it about Dreamhost? I just paid money to add MySQL to my account, so of course it become free right after that! This has happened before, they figure that anything I'm willing to pay for must be important enough to offer to everyone for nothing, heh. (They treat me good, no doubt! I just like to bitch. ;-)

Your pal, -doc-

Wes
Paranoid (IV) Mad Scientist

From: Inside THE BOX
Insane since: May 2000

posted 03-25-2002 09:16

I sent HostRocket a trouble ticket asking for help on the issue. In the meantime, I'll look at cgiwrap and see if I can pull that off.

But, if all fails, how dangerous is it to have a directory chmoded 777?

lallous
Paranoid (IV) Inmate

From: Lebanon
Insane since: May 2001

posted 03-25-2002 11:23

having a 777, can allow a user on the same host to write to your directory...probably writing scripts; read your own scripts; etc...
a bit bad i believe.

Wes
Paranoid (IV) Mad Scientist

From: Inside THE BOX
Insane since: May 2000

posted 03-25-2002 21:08

Well, here's what I got back from HostRocket.

quote:
Hi,

SUEXEC is not enabled on the server you are on. Since its only a log directory, I wouldnt worry about it.

-Justin Mazzi
HostRocket.com Support

Wes
Paranoid (IV) Mad Scientist

From: Inside THE BOX
Insane since: May 2000

posted 03-27-2002 08:07

Well, despite the so-called support staff's insistance that it's >ahem< "only" a log directory, I continued to seek a solution.

I looked into cgiwrap as you suggested, Doc, and discovered that I can, through my control panel, set up a directory call /scgi-bin/, which appears to run scripts that reside in it under /usr/local/cpanel/cgi-sys/scgiwrap.

Unfortunately, the scripts cannot be in a subdirectory of /scgi-bin/. So, if I want more than one software package to work this way, I'd have to lump all the scripts into that directory. So, now I'm trying to determine another way to call on scgiwrap.