-----BEGIN PGP SIGNED MESSAGE----- Package: apache Version: 1.3.6-15.2
Changing the SuExec docroot from /var/www/htdocs to /var/www will enable SuExec for people without or with few virtual hosts residing below /var/www. However, on "bigger" systems with lots of virtual hosts, one might want to specify a directory like /home/virtualhosts/www.yourcompany.com, each one containing docs/ cgi-bin/ logs/ directories etc. SuExec won't work in such an environment because it expects all cgi programs in /var/www, and of course symlinks won't do the job. What's the point of forcing the location of cgi programs to /var/www? Shouldn't all the directories defined as ScriptAlias for each virtual host be acceppted as docroot for SuExec? I thought SuExec was intended to make cgi in a virtual host environment more secure, i.e. to run cgi scripts as a different user for each virtual host? Any suggestions on this topic are greatly appreciated... Alexander List <[EMAIL PROTECTED]> -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBN9I1A2WTYnZjEXP1AQHTXAP/ZEwkYX94afJwOESP43aYymubbDHxv2dj h9nZUlrav09FWLAfEfwrzLjILhHzR8Zp3LFF8hDDdX+23hYbf4IT5H6lqExj7+45 3Ed2a/dZMfw9gkvRMcN/wVrjbSUCFR9Wu+rhKwfvISr06wDrbIB9yiSqrrCyu/7X yLoe+M54XV8= =/I0q -----END PGP SIGNATURE-----
