Hi,

Has anyone tried this apache module? If it really works and has no known bugs, then this could be a VERY USEFULL module for webhost owners.

Here's a little description:
This module enables the web server to take on the access rights of a user & group, so that ~users can make available files to the web without having to make them readable by the world on the local file system. This can be useful for sites with a large number of users who want to apply file access controls among themselves. This module can also be applied to virtual hosts, directories, and locations.

http://www.snert.com/Software/mod_become/index.shtml

I'm gonna try this on my non production box tonight, but the security warning kinda makes me warry :D

Originally posted by The Prohacker
I'm gonna try this on my non production box tonight, but the security warning kinda makes me warry :D

Did you get a chance to install it and try it? If so, how's it working?

Why wouldn't you just use suexec?

-t

Suexec is only used for CGI.

Shouldn't a better description of mod_become be:

"This module enables the web server to take on the access rights of a user & group, so that ~users can make available files to the web without having to make them readable by the the user that the web server runs as on the local file system."

Ah - sound of hand slapping forehead - of course.

-t