[TriLUG] apache2 security question

Matt Pusateri mpusateri at wickedtrails.com
Tue Aug 21 11:00:42 EDT 2007


Why don't you give the webadmin sudo rights, yes it can be bypassed, but 
at least you will know it.  Also you need to decide whether you trust 
the webadmin or not!

 I too wonder why your running apache as root?

Matt P.

Blackburn, Marvin wrote:
> We need to run apache2 as root; however, we dont want to give our web
> developer root access to modify the apache2 files as that, at one time, was
> risky.
> We started doing this quite some time ago; however, I'm not sure that we
> need to continue doing this.  Is there any risk to giving the webadmin write
> permissions to the httpd.conf file and allowing hiim to start and stop the
> system with apachectl as long as root owns all the other files?
>  
> most of our systems are rhel 3.0 and above and we use apache2 instead of teh
> httpd that comes with the system.
>  
>  
>
>
> _____________________________________
> "He's no failure. He's not dead yet."
> William Lloyd George
>
>   
>
>  
>   




More information about the TriLUG mailing list