I've set up Apache2 with PHP5 + suEXEC as outlined in http://www.howtoforge.com/how-to-set...on-ubuntu-9.10
. Everything works fine.
However, I've run across a curious little thing in the suEXEC documentation which I am a little uncertain as to how i should read. According to the suEXEC documentation (http://httpd.apache.org/docs/2.0/suexec.html
), the suEXEC wrapper should perform 20 different checks in order to determine wether a script should be run or not. Two of these checks are:
#16. Is the target CGI/SSI program NOT writable by anyone else?
#18. Is the target user/group the same as the program's user group.
What I am uncertain about, is wether "CGI/SSI" in #16 is the PHP5 parser itself (or in the case of the HowToForge tutorial - the wrapper script), or the php file itself to be run. Would anyone happen to know that?
Furthermore, i am uncertain about #18 and what "the program" is? Are we still talking about the "CGI/SSI" program?
It would be great to hear any thoughts on this!