Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Apache>
  3. Users
Fwd: Script behaving differently when run by Apache and when run from a shell by user www-data?
sa212+apache at cyconix
Jan 23, 2024, 11:12 AM
Post #1 of 2 (221 views)
Permalink
> Let's take a step back - why are you unmounting from a cgi script?

It's a one-time setup when a user configures a new system. Most of these
users aren't shell-literate, so they configure by ticking boxes on a web
page. The system is a VPS, so is actually a VM, which I hope isn't relevant.

Anyway, when configuration completes, all the scripts are deleted and
Apache runs 'normally'.
Re: Script behaving differently when run by Apache and when run from a shell by user www-data? [ In reply to ]
thumbs at apache
Jan 23, 2024, 11:24 AM
Post #2 of 2 (221 views)
Permalink
On Tue, Jan 23, 2024 at 2:12?PM EML <sa212+apache@cyconix.com> wrote:

>
> Let's take a step back - why are you unmounting from a cgi script?
>
> It's a one-time setup when a user configures a new system. Most of these
> users aren't shell-literate, so they configure by ticking boxes on a web
> page. The system is a VPS, so is actually a VM, which I hope isn't relevant.
>
> Anyway, when configuration completes, all the scripts are deleted and
> Apache runs 'normally'.
>

IMO suexec would be better suited to handle more sensitive operations such
as unmounting.

CGI is not an interactive shell, as you discovered.

Calling a separate script with the suid bit might work too.

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal