Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
yrro
on April 4, 2019
|
parent
|
context
|
favorite
| on:
Apache web server bug grants root access on shared...
You can't really have a setuid "script" anyway. But you can, at the bare minimum, launch CGI scripts via suEXEC. This prevents them from being able to attack the httpd worker processes, since they won't be running as the same user.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
