Beefy Boxes and Bandwidth Generously Provided by pair Networks
Pathologically Eclectic Rubbish Lister
 
PerlMonks  

Re: Security, root and CGI?

by hbm (Hermit)
on Jan 29, 2009 at 01:52 UTC ( #739742=note: print w/ replies, xml ) Need Help??


in reply to Security, root and CGI?

I'd run the web server as a UID that 1) has no shell access; and 2) has no ownership outside the web server. And 3) allow that (and only that) UID to run the root script via sudo.

On the other hand, I'm pressed to think of any root-owned tasks that I'd unload... Do they need to be owned by root? Can they not be cron'd?

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://739742]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others exploiting the Monastery: (5)
As of 2016-07-28 03:34 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    What is your favorite alternate name for a (specific) keyboard key?


















    Results (252 votes). Check out past polls.