Solved

Help with php parsing on apache

Posted on 2011-02-22
3
616 Views
Last Modified: 2013-12-13
Is it a good idea to run suEXEC when your using fcgi to parse your php files on apache?
0
Comment
Question by:sparingatom
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 3

Accepted Solution

by:
wwwdeveloper2 earned 500 total points
ID: 34957531
what issues are you specifically worried about?  Security, stabilization, or what?

Running suEXEC is a good idea for running the applications as different users, especially if you are in a shared hosting environment.  Just understand that there are a lot of assumptions that you are familiar with your system's security or using suExec can open a lot of holes.  

Here is a good article that might be worth you reading if you are planning to go this route.  Just be safe and you can definitely run with this type of setup.

http://httpd.apache.org/docs/current/suexec.html

0
 
LVL 2

Expert Comment

by:schwomp
ID: 34963435
Hello!

> or using suExec can open a lot of holes.  

Could you explain?

I am using suexec with fcgid and it works like a charm.

Bye
0
 
LVL 3

Expert Comment

by:wwwdeveloper2
ID: 34963495
Schwomp -  Check the link I submitted - It is way too much to explain here, but if you want to submit a question maybe it would more help.  

"Used properly, this feature can reduce considerably the security risks involved with allowing users to develop and run private CGI or SSI programs. However, if suEXEC is improperly configured, it can cause any number of problems and possibly create new holes in your computer's security. If you aren't familiar with managing setuid root programs and the security issues they present, we highly recommend that you not consider using suEXEC."  - From Apache
0

Featured Post

Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It is possible to boost certain documents at query time in Solr. Query time boosting can be a powerful resource for finding the most relevant and "best" content. Of course the more information you index, the more fields you will be able to use for y…
3 proven steps to speed up Magento powered sites. The article focus is on optimizing time to first byte (TTFB), full page caching and configuring server for optimal performance.
The viewer will learn how to count occurrences of each item in an array.
The viewer will learn how to create and use a small PHP class to apply a watermark to an image. This video shows the viewer the setup for the PHP watermark as well as important coding language. Continue to Part 2 to learn the core code used in creat…

736 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question