reassign 428830 speedy-cgi-perl 2.22-4 retitle 428830 doesn't support suid scripts thanks
On Thu, Jun 14, 2007 at 02:58:09PM +0100, Gary Prosser wrote: > Package: libapache2-mod-speedycgi > Version: 2.22-4 > > In apache2 error log I get > Can't do seteuid! > speedy_backend[7491]: perl_parse error > [Thu Jun 14 14:39:25 2007] [error] [client 192.168.3.254] (9)Bad file > descriptor: couldn't spawn child process: openwebmail.pl The problem is that openwebmail wants to use suid scripts. The version of SpeedyCGI in the speedy-cgi-perl package doesn't support these (it wasn't compiled with -DIAMSUID). Even if it did, they probably wouldn't work with the Apache module unless Apache runs as root (which is not recommended). I'm in two minds about enabling -DIAMSUID. Looking at the code it doesn't look too bad. The code in speedy_main.c takes suid/sgid bits into account only when run as root and looks generally sane. I certainly don't think we should ship an actual suid speedy binary; turning the suid bit on should be left that to the user really needing suid scripts. On the other hand, the perl-suid package description states: Usage of this program is now strongly deprecated upstream and support (along with this package) will probably be removed in 5.10. so promoting suid scripts is probably not a great idea for SpeedyCGI either. Jose: any opinion? Cheers, -- Niko Tyni [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
