Apache mod_suid allows per-vhost execution of scripts under their own UIDs. It functions in a way similar to Apache's perchild MPM, but differs in a number of ways. It does per child user/group switching; the Apache MPM makes switches based on vhosts. All processing is done under a specific UID/GID, including PHP and mod_perl scripts.
|Tags||Internet Web HTTP Servers|
Release Notes: The fsuid code was removed, since it doesn't work when using ports greater than 1024. A bug which occurred when setresuid() was called with the wrong arguments in certain circumstances was fixed.
Release Notes: Major code cleanups were done. The -DBIG_SECURITY_HOLE compile-time option is no longer needed on Linux. The lsm_rsuid LSM kernel module can be used, which prevents root exploits.
No changes have been submitted for this release.