Apache suEXEC Support

  1. $BL\
  2. suEXEC $B$H$O(B?
  3. $B;O$a$kA0$K(B
  4. suEXEC $B$N%;%-%e%j%F%#%b%G%k(B
  5. suEXEC $B$N@_Dj$H%$%s%9%H!<%k(B
  6. suEXEC $B$NM-8z2=$HL58z2=(B
  7. suEXEC $B$N;HMQ(B
  8. suEXEC $B$N%G%P%C%0(B
  9. $B$H$+$2$KCm0U(B: $B7Y9p$H;vNc(B

suEXEC $B$H$O(B?

Apache 1.2 $B$GF3F~$5$l$?(B suEXEC $B5!G=$K$h$j!"(B Apache $B%f!<%6$O(B Web $B%5!<%P$rCGI $B%W%m%0%i%`$d(B SSI $B%W%m%0%i%`$rl9g!"DL>o$O(B web $B%5!<%P$H(B $BF1$8%f!<%6$G

$BE,@Z$K;HMQ$9$k$H!"$3$N5!G=$K$h$j%f!<%6$,8DJL$N(B CGI $B$d(B SSI $B%W%m%0%i%`$r3+H/$7e$N4m81$r!"(B $B$+$J$j8:$i$9$3$H$,$G$-$^$9!#$7$+$7!"(BsuEXEC $B$N@_Dj$,ITE,@Z$@$H!"(B $BB?$/$NLdBj$,@8$8!"$"$J$?$N%3%s%T%e!<%?$K?7$7$$(B $B%;%-%e%j%F%#%[!<%k$r:n$C$F$7$^$&2DG=@-$,$"$j$^$9!#(B $B$"$J$?$,(B root $B$K(B setuid $B$5$l$?%W%m%0%i%`$H!"$=$l$i$+$i@8$8$k(B $B%;%-%e%j%F%#>e$NLdBj$N4IM}$K>\$7$/$J$$$h$&$J$i!"(BsuEXEC $B$N;HMQ$r(B $B8!F$$7$J$$$h$&$K6/$/?d>)$7$^$9!#(B

$BL\

$B;O$a$kA0$K(B

$B$3$NJ8=q$N@hF,$KHt$VA0$K!"(BApache $B%0%k!<%W$H(B $B$3$NJ8=q$G$N2>Dj$rCN$C$F$*$/$Y$-$G$7$g$&!#(B

$BBh(B 1 $B$K!"$"$J$?$,(B setuid $B$H(B setgid $BA`:n$,2DG=$J(B UNIX $BM3Mh$N(B $B%*%Z%l!<%F%#%s%0%7%9%F%`$r;H$C$F$$$k$3$H$rA[Dj$7$F$$$^$9!#(B $B$3$l$O!"$9$Y$F$N%3%^%s%INc$K$"$F$O$^$j$^$9!#(B $B$=$NB>$N%W%i%C%H%[!<%`$G$O!"$b$7(B suEXEC $B$,%5%]!<%H$5$l$F$$$?$H(B $B$7$F$b@_Dj$O0[$J$k$+$b$7$l$^$;$s!#(B

$BBh(B 2 $B$K!";HMQCf$N%3%s%T%e!<%?$N%;%-%e%j%F%#$K4X$9$k4pK\E*$J35G0$H!"(B $B$=$l$i$N4IM}$K$D$$$F$"$J$?$,>\$7$$$3$H$rA[Dj$7$F$$$^$9!#(B $B$3$l$O!"(Bsetuid/setgid $BA`:n!"(B $B$"$J$?$N%7%9%F%`>e$G$N$=$NA`:n$K$h$kMM!9$J8z2L!"(B $B%;%-%e%j%F%#%l%Y%k$K$D$$$F$"$J$?$,M}2r$7$F$$$k$H$$$&$3$H$r4^$_$^$9!#(B

$BBh(B 3 $B$K!"(B$B2~B$$5$l$F$$$J$$(B suEXEC $B%3!<%I$N(B $B;HMQ$rA[Dj$7$F$$$^$9!#(B suEXEC $B$N%3!<%I$O!"B?$/$N%Y!<%?%F%9%?$@$1$G$J$/!"3+H/Z$5$l$^$9!#$3$N%3!<%I$r2~JQ$9$k$3$H$G!"M=4|$5$l$J$$LdBj$d(B $B?7$7$$%;%-%e%j%F%#>e$N4m81$,@8$8$k$3$H$,$"$j$^$9!#(B $B%;%-%e%j%F%#%W%m%0%i%_%s%0$N>\:Y$KDL$8$F$$$F!"(B $B:#8e$N8!F$$N$?$a$K@.2L$r(B Apache $B%0%k!<%W$H6&M-$7$h$&$H;W$&$N$G(B $B$J$1$l$P!"(BsuEXEC $B%3!<%I$OJQ$($J$$$3$H$r(B $B6/$/(B$B?d>)$7$^$9!#(B

$BBh(B 4 $B$K!"$3$l$,:G8e$G$9$,!"(BsuEXEC $B$r(B Apache $B$N%G%U%)%k%H(B $B%$%s%9%H!<%k$K(B$B4^$a$J$$(B$B$3$H$,(B Apache $B%0%k!<%W$G7hDj$5$l$F$$$^$9!#(B $B$3$l$O!"(BsuEXEC $B$N@_Dj$K$O4IM}\:Y$K$o$?$k?5=E$JCm0U$,I,MW(B $B$@$+$i$G$9!#(BsuEXEC $B$NMM!9$J@_Dj$K$D$$$F8!F$$,=*$o$l$P!"(B $B4IM}o$N%$%s%9%H!<%kJ}K!$G%$%s%9%H!<%k$9$k(B $B$3$H$,$G$-$^$9!#$3$l$i$N@_DjCM$O!"(BsuEXEC $B5!G=$N;HMQCf$K(B $B%7%9%F%`%;%-%e%j%F%#$rE,@Z$KJ]$D$?$a$K!"4IM}\:Y$Jl9g$K(B $B8B$C$F$$$?$@$-$?$$$H9M$($F$$$^$9!#(B

$B$=$l$G$b?J$_$^$9$+(B? $B$h$m$7$$!#$G$O!"@h$X?J$_$^$7$g$&(B!

$BL\

suEXEC $B%;%-%e%j%F%#%b%G%k(B

suEXEC $B$N@_Dj$H%$%s%9%H!<%k$r;O$a$kA0$K!"$^$:(B $BZ$9$k$?$a$K7Y9p$5$l$k$3$H(B $B$r$h$/M}2r$7$F$*$$$?J}$,$h$$$G$7$g$&!#(B

suEXEC $B$O(B Apache web $B%5!<%P$+$i(B suEXEC $B$O!"(BApache web $B%5!<%P$+$i(B $B8F$S=P$5$l$k(B setuid $B$5$l$?(B "wrapper" $B%W%m%0%i%`$,4pK\$H$J$C$F$$$^$9!#(B $B@_7W$7$?(B CGI$B!"$^$?$O(B SSI $B%W%m%0%i%`$X$N(B HTTP $B%j%/%(%9%H$,(B $B$"$k$H!"$3$N(B wrapper $B$,8F$S=P$5$l$^$9!#(B $B$3$N$h$&$J%j%/%(%9%H$,$"$k$H!"(BApache $B$O$=$N%W%m%0%i%`$,(B $B$H%f!<%6(B ID $B$H%0%k!<%W(B ID $B$r;XDj$7$F(B suEXEC wrapper $B$r

$B$=$l$+$i!"(Bwrapper $B$O@.8y$^$?$O<:GT$r7hDj$9$k$?$a(B $B0J2<$N=hM}$r9T$J$$$^$9!#(B $B$3$l$i$N>uBV$N$&$A0l$D$G$b<:GT$7$?>l9g!"%W%m%0%i%`$O<:GT$r(B $B%m%0$K5-O?$7$F%(%i!<$G=*N;$7$^$9!#$=$&$G$J$1$l$P!"(B $B8e$N=hM}$,B3$1$i$l$^$9!#(B

  1. wrapper $B$,E,@Z$J?t$N0z?t$G8F$S=P$5$l$?$+(B?
    wrapper $B$OE,@Z$J?t$N0z?t$,M?$($i$l$?>l9g$K
  2. wrapper $B$r
    $B$3$l$O!"(Bwrapper $B$rZ$9$k$?$a$G$9!#(B
  3. $B$3$N@5Ev$J%f!<%6$O(B wrapper $B$N
    $B$3$N%f!<%6$O(B wrapper $B
  4. $BBP>]$N%W%m%0%i%`$,0BA4$G$J$$3,AX$N;2>H$r$7$F$$$k$+(B?
    $BBP>]$N%W%m%0%i%`$,(B '/' $B$+$i;O$^$k!"$^$?$O(B '..' $B$K$h$k;2>H$r9T$J$C$F$$$^$9$+(B? $B$3$l$i$O5v2D$5$l$^$;$s!#(B $BBP>]$N%W%m%0%i%`$O(B Apache $B$N(B web $B6u4VFb$K$J$1$l$P$J$j$^$;$s!#(B
  5. $BBP>]$H$J$k%f!<%6L>$O@5Ev$J$b$N$+(B?
    $BBP>]$H$J$k%f!<%6L>$OB8:_$7$F$$$^$9$+(B?
  6. $BBP>]$H$J$k%0%k!<%WL>$O@5Ev$J$b$N$+(B?
    $BBP>]$H$J$k%0%k!<%WL>$OB8:_$7$F$$$^$9$+(B?
  7. $BL\E*$N%f!<%6$O%9!<%Q!<%f!<%6$G$O(B$B$J$$(B$B$+(B?
    $B:#$N$H$3$m!"(BsuEXEC $B$O(B 'root' $B$K$h$k(B CGI/SSI $B%W%m%0%i%`$N(B $B
  8. $BBP>]$H$J$k%f!<%6(B ID $B$O!":G>.$N(B ID $BHV9f$h$j$b(B$BBg$-$$(B$B$+(B?
    $B:G>.%f!<%6(B ID $BHV9f$O@_Dj;~$K;XDj$5$l$^$9!#(B $B$3$l$O!"(BCGI/SSI $B%W%m%0%i%`.CM$G$9!#$3$l$O(B "system" $BMQ$N%"%+%&%s%H$r(B $BJD$a=P$9$N$KM-8z$G$9!#(B
  9. $BBP>]$H$J$k%0%k!<%W$O%9!<%Q!<%f!<%6$N%0%k!<%W$G$O(B$B$J$$(B$B$+(B?
    $B:#$N$H$3$m!"(BsuEXEC $B$O(B 'root' $B%0%k!<%W$K$h$k(B CGI/SSI $B%W%m%0%i%`$N
  10. $BBP>]$H$J$k%0%k!<%W(B ID $B$O:G>.$N(B ID $BHV9f$h$j$b(B$BBg$-$$(B$B$+(B?
    $B:G>.%0%k!<%W(B ID $BHV9f$O@_Dj;~$K;XDj$5$l$^$9!#(B $B$3$l$O!"(BCGI/SSI $B%W%m%0%i%`.CM$G$9!#$3$l$O(B "system" $BMQ$N%0%k!<%W$r(B $BJD$a=P$9$N$KM-8z$G$9!#(B
  11. wrapper $B$,@5>o$KBP>]$H$J$k%f!<%6$H%0%k!<%W$K$J$l$k$+(B?
    $B$3$3$G!"(Bsetuid $B$H(B setgid $B$N5/F0$K$h$j%W%m%0%i%`$OBP>]$H$J$k(B $B%f!<%6$H%0%k!<%W$K$J$j$^$9!#%0%k!<%W%"%/%;%9%j%9%H$O!"(B $B%f!<%6$,B0$7$F$$$k$9$Y$F$N%0%k!<%W$G=i4|2=$5$l$^$9!#(B
  12. $B%W%m%0%i%`$,CV$+$l$k%G%#%l%/%H%j$OB8:_$7$F$$$k$+(B?
    $B%G%#%l%/%H%j$,B8:_$7$J$$$J$i!"$=$N%U%!%$%k$bB8:_$7$J$$(B $B$+$b$7$l$^$;$s!#(B
  13. $B%G%#%l%/%H%j$,(B Apache $B$N%I%-%e%a%s%H%D%j!
    $B%j%/%(%9%H$,%5!<%PFb$N$b$N$G$"$l$P!"MW5a$5$l$?%G%#%l%/%H%j$,(B $B%5!<%P$N%I%-%e%a%s%H%k!<%HG[2<$K$"$j$^$9$+(B? $B%j%/%(%9%H$,(B UserDir $B$N$b$N$G$"$l$P!"MW5a$5$l$?%G%#%l%/%H%j$,(B $B%f!<%6$N%I%-%e%a%s%H%k!<%HG[2<$K$"$j$^$9$+(B?
  14. $B%G%#%l%/%H%j$rB>$N%f!<%6$,=q$-9~$a$k$h$&$K$J$C$F(B $B$$$J$$(B$B$+(B?
    $B%G%#%l%/%H%j$rB>%f!<%6$K3+J|$7$J$$$h$&$K$7$^$9!#(B $B=jM-%f!<%6$@$1$,$3$N%G%#%l%/%H%j$NFbMF$r2~JQ$G$-$k$h$&$K$7$^$9!#(B
  15. $BBP>]$H$J$k%W%m%0%i%`$OB8:_$9$k$+(B?
    $BB8:_$7$J$1$l$P
  16. $BBP>]$H$J$k%W%m%0%i%`%U%!%$%k$,B>%"%+%&%s%H$+$i=q$-9~$a$k$h$&$K$J$C$F(B $B$$$J$$(B$B$+(B?
    $B=jM-
  17. $BBP>]$H$J$k%W%m%0%i%`$,(B setuid $B$^$?$O(B setgid $B$5$l$F(B$B$$$J$$(B$B$+(B?
    UID/GID $B$r:FEYJQ99$7$F$N%W%m%0%i%`
  18. $BBP>]$H$J$k%f!<%6(B/$B%0%k!<%W$,%W%m%0%i%`$N%f!<%6(B/$B%0%k!<%W$HF1$8$+(B?
    $B%f!<%6$,$=$N%U%!%$%k$N=jM-
  19. $B0BA4$JF0:n$rJ]>Z$9$k$?$a$N4D6-JQ?t%/%j%"$,2DG=$+(B?
    suEXEC $B$O!"0BA4$J4D6-JQ?t$N%j%9%H(B ($B$3$l$i$O@_Dj;~$K:n@.$5$l$^$9(B) $BFb$NJQ?t$H$7$F(B $BEO$5$l$k0BA4$J(B PATH $BJQ?t(B ($B@_Dj;~$K;XDj$5$l$^$9(B) $B$r(B $B@_Dj$9$k$3$H$G!"%W%m%;%9$N4D6-JQ?t$r%/%j%"$7$^$9!#(B
  20. $BBP>]$H$J$k%W%m%0%i%`$r(B exec $B$7$F
    $B$3$3$G(B suEXEC $B$,=*N;$7!"BP>]$H$J$k%W%m%0%i%`$,3+;O$5$l$^$9!#(B

$B$3$3$^$G$,(B suEXEC $B$N(B wrapper $B$K$*$1$k%;%-%e%j%F%#%b%G%k$NI8=`E*$JF0:n$G$9!#(B $B$b$&>/$787=E$K(B CGI/SSI $B@_7W$K$D$$$F$N?7$7$$@)8B$d5,Dj$r(B $B/$7$:$D3+H/$5$l$F$-$^$7$?!#(B

$B$3$N%;%-%e%j%F%#%b%G%k$rMQ$$$F(B $B%5!<%P@_Dj;~$K$I$N$h$&$K5v$9$3$H$r@)8B$9$k$+!"(B $B$^$?!"(BsuEXEC $B$rE,@Z$K@_Dj$9$k$H$I$N$h$&$J%;%-%e%j%F%#>e$N(B $B4m81$rHr$1$i$l$k$+$K4X$9$k$h$j>\$7$$>pJs$K$D$$$F$O!"(B "$B$H$+$2$KCm0U(B" (Beware the Jabberwock) $B$N>O$r;2>H$7$F$/$@$5$$!#(B

$BL\

suEXEC $B$N@_Dj$H%$%s%9%H!<%k(B

$B$3$3$+$i3Z$7$/$J$j$^$9!#(BApache 1.2 $B$"$k$$$O(B "src/Configure" $B%9%/%j%W%H$G(B Apache 1.3 $B$r@_Dj$9$k$J$i!"(BsuEXEC $B%X%C%@%U%!%$%k$rJT=8$7$F(B $B%P%$%J%j$rE,@Z$J>l=j$K$BJL$NJ8=q(B$B$K(B $B5-:\$5$l$F$$$^$9!#0J2<$N>O$G$O!"(BAutoConf-style $B%$%s%?%U%'!<%9(B (APACI) $B$r;H$C$?(B Apache 1.3 $B$G$N@_Dj$H%$%s%9%H!<%k$K(B $B$D$$$F=R$Y$F$$$^$9!#(B

APACI $B$N(B suEXEC $B@_Dj%*%W%7%g%s(B

--enable-suexec
$B$3$N%*%W%7%g%s$O!"%G%U%)%k%H$G$O%$%s%9%H!<%k$5$l$:!"M-8z$K$O$J$i$J$$(B suEXEC $B5!G=$rM-8z$K$7$^$9!#(BsuEXEC $B$r;H$&$h$&$K(B APACI $B$K(B $BMW5a$9$k$K$O!"(B--enable-suexec $B%*%W%7%g%s$K$"$o$;$F(B $B>/$J$/$H$b0l$D$O(B --suexec-xxxxx $B%*%W%7%g%s$,;XDj(B $B$5$l$J$1$l$P$J$j$^$;$s!#(B
--suexec-caller=UID
Apache $B$rDL>oF0:n$5$;$k(B $B%f!<%6L>(B$B$r;XDj$7$^$9!#(B $B$3$N%f!<%6$@$1$,(B suexec $B$N--suexec-docroot=DIR
Apache $B$N%I%-%e%a%s%H%k!<%H$r@_Dj$7$^$9!#(B $B$3$l$,(B suEXEC $B$NF0:n$G;HMQ$9$k(B $BM#0l$N%G%#%l%/%H%j3,AX$K$J$j$^$9(B (UserDir $B$N;XDj$OJL(B)$B!#(B $B%G%U%)%k%H$G$O(B --datedir $B$K(B "/htdocs" $B$H$$$&%5%U%#%C%/%9$r(B $B$D$1$?$b$N$G$9!#(B"--datadir=/home/apache" $B$H$7$F@_Dj$9$k$H!"(B suEXEC wrapper $B$K$H$C$F(B "/home/apache/htdocs" $B$,%I%-%e%a%s%H(B $B%k!<%H$H$7$F;H$o$l$^$9!#(B
--suexec-logfile=FILE
suEXEC $B$N=hM}$H%(%i!<$,5-O?$5$l$k%U%!%$%kL>$r;XDj$7$^$9!#(B ($B4F::$d%G%P%C%0L\E*$KM-MQ(B) $B%G%U%)%k%H$G$O%m%0%U%!%$%k$O(B "suexec_log" $B$H$$$&L>A0$G!"(B $BI8=`$N%m%0%U%!%$%k%G%#%l%/%H%j(B (--logfiledir) $B$KCV$+$l$^$9!#(B
--suexec-userdir=DIR
suEXEC $B$,%"%/%;%9$r5v$5$l$k%f!<%6%[!<%`%G%#%l%/%H%jG[2<$N(B $B%5%V%G%#%l%/%H%j$r;XDj$7$^$9!#$3$N%G%#%l%/%H%j0J2<$NA4l9g(B ($B$9$J$o$A(B "*" $B$r4^$^$J$$$b$N(B)$B!"$3$l$HF1$8CM$r@_Dj$9$Y$-$G$9!#(B Userdir $B%G%#%l%/%F%#%V$,$=$N%f!<%6$N%Q%9%o!<%I%U%!%$%kFb$N(B $B%[!<%`%G%#%l%/%H%j$HF1$8>l=j$r;X$7$F$$$J$1$l$P!"(B suEXEC $B$OE,@Z$KF0:n$7$^$;$s!#(B $B%G%U%)%k%H$O(B "public_html" $B$G$9!#(B
$B3F(B UserDir $B$,0[$J$C$?2>A[%[%9%H$r@_Dj$7$F$$$k>l9g!"(B $B$=$l$i$rA4$F0l$D$N?F%G%#%l%/%H%j$K4^$a$F!"$=$N?F%G%#%l%/%H%j$N(B $BL>A0$r$3$3$G;XDj$9$kI,MW$,$"$j$^$9!#(B $B$3$N$h$&$K;XDj$5$l$J$1$l$P(B "~userdir" cgi $B$X$N%j%/%(%9%H$,F0:n$7$^$;$s!#(B
--suexec-uidmin=UID
suEXEC $B$NBP>]%f!<%6$H$7$F5v$5$l$k(B UID $B$N:G>.CM$r;XDj$7$^$9!#(B $BBgDq$N%7%9%F%`$G$O(B 500 $B$+(B 100 $B$,0lHLE*$G$9!#(B $B%G%U%)%k%HCM$O(B 100 $B$G$9!#(B
--suexec-gidmin=GID
suEXEC $B$NBP>]%0%k!<%W$H$7$F5v$5$l$k(B GID $B$N:G>.CM$r;XDj$7$^$9!#(B $BBgDq$N%7%9%F%`$G$O(B 100 $B$,0lHLE*$J$N$G!"%G%U%)%k%HCM$H$7$F$b(B 100 $B$,;H$o$l$F$$$^$9!#(B
--suexec-safepath=PATH
CGI $B

suEXEC $B@_Dj$N3NG'(B
suEXEC wrapper $B$r%3%s%Q%$%k$7$F%$%s%9%H!<%k$9$kA0$K!"(B $B@_DjFbMF$r(B --layout $B%*%W%7%g%s$G3NG'$G$-$^$9!#(B
$B=PNONc(B: 

    suEXEC setup:
            suexec binary: /usr/local/apache/sbin/suexec
            document root: /usr/local/apache/share/htdocs
           userdir suffix: public_html
                  logfile: /usr/local/apache/var/log/suexec_log
                safe path: /usr/local/bin:/usr/bin:/bin
                caller ID: www
          minimum user ID: 100
         minimum group ID: 100

suEXEC wrapper $B$N%3%s%Q%$%k$H%$%s%9%H!<%k(B
--enable-suexec $B%*%W%7%g%s$G(B suEXEC $B5!G=$rM-8z$K$9$k$H!"(B "make" $B%3%^%s%I$r $B$9$Y$F$N9=@.MWAG$,:n@.$5$l$k$H!"$=$l$i$N%$%s%9%H!<%k$K$O(B "make install" $B%3%^%s%I$,l=j$O(B "/usr/local/apache/sbin/suexec" $B$G$9!#(B
$B%$%s%9%H!<%k;~$K$O(B root $B8"8B$,(B $BI,MW$J$N$GCm0U$7$F$/$@$5$$!#(B wrapper $B$,%f!<%6(B ID $B$r@_Dj$9$k$?$a$K!"(B $B=jM-root $B$G$N(B $B%;%C%H%f!<%6(B ID $B%S%C%H$r$=$N%U%!%$%k$N%b!<%I$K(B $B@_Dj$7$J$1$l$P$J$j$^$;$s!#(B

$BL\

suEXEC $B$NM-8z2=$HL58z2=(B

$B5/F0;~$K!"(BApache $B$O(B "sbin" $B%G%#%l%/%H%j$G(B "suexec" $B$rC5$7$^$9(B ($B%G%U%)%k%H$O(B "/usr/local/apache/sbin/suexec") $B!#(B $BE,@Z$K@_Dj$5$l$?(B suEXEC $B$,$_$D$+$k$H!"%(%i!<%m%0$K(B $B0J2<$N%a%C%;!<%8$,=PNO$5$l$^$9!#(B 

    [notice] suEXEC mechanism enabled (wrapper: /path/to/suexec)

$B%5!<%P5/F0;~$K$3$N%a%C%;!<%8$,=P$J$$>l9g!"BgDq$O%5!<%P$,(B $BA[Dj$7$?>l=j$G(B wrapper $B%W%m%0%i%`$,8+$D$+$i$J$+$C$?$+!"(B setuid root $B$H$7$F%$%s%9%H!<%k$5$l$F$$$J$$$+$G$9!#(B
suEXEC $B$N;EAH$_$r;HMQ$9$k$N$,=i$a$F$G!"(BApache $B$,4{$KF0:nCf(B $B$G$"$l$P!"(BApache $B$r(B kill $B$7$F!":F5/F0$7$J$1$l$P$J$j$^$;$s!#(B HUP $B%7%0%J%k$d(B USR1 $B%7%0%J%k$K$h$kC1=c$J:F5/F0$G$OIT==J,$G$9!#(B
suEXEC $B$rL58z$K$9$k>l9g$O!"(B"suexec" $B%U%!%$%k$r:o=|$7$F$+$i(B Apache $B$r(B kill $B$7$F:F5/F0$7$^$9!#(B

$BL\

suEXEC $B$N;HMQ(B

$B2>A[%[%9%H(B:
suEXEC wrapper $B$N;H$$J}$H$7$F!"(B $B2>A[%[%9%H(B$B@_Dj$G$N(B User $B%G%#%l%/%F%#%V$H(B Group $B%G%#%l%/%F%#%V(B $B$rDL$7$?$b$N$,$"$j$^$9!#$3$l$i$N%G%#%l%/%F%#%V$r(B $B%a%$%s%5!<%P$N%f!<%6(B ID $B$H0[$J$k$b$N$K$9$k$H!"(BCGI $B%j%=!<%9(B $B$X$N$9$Y$F$N%j%/%(%9%H$O!"$=$N(B <VirtualHost> $B$G(B $B;XDj$5$l$?(B User $B$H(B Group $B$H$7$F<VirtualHost> $B$G$=$l$i$N(B $B%G%#%l%/%F%#%V$N$I$A$i$+!"$^$?$ON>J}$,;XDj$5$l$F$$$J$$>l9g!"(B $B%a%$%s%5!<%P$N%f!<%6(B ID $B$,A[Dj$5$l$^$9!#(B

$B%f!<%6%G%#%l%/%H%j(B:
suEXEC wrapper $B$O!"%j%/%(%9%H@h$N%f!<%6$H$7$F(B CGI $B$r~" $BJ8;z$r(B $BCV$/$3$H$Ge5-$N(B$B%;%-%e%j%F%#8!::(B$B$r(B $B%Q%9$G$-$k$3$H$G$9!#(B

$BL\

suEXEC $B$N%G%P%C%0(B

suEXEC wrapper $B$O!">e5-$G=R$Y$?(B --suexec-logfile $B%*%W%7%g%s$G(B $B;XDj$5$l$?%U%!%$%k$K%m%0>pJs$r5-O?$7$^$9!#(B wrapper $B$rE,@Z$K@_Dj!"%$%s%9%H!<%k$G$-$F$$$k$H;W$&>l9g!"(B $B$I$3$GLB$C$F$$$k$+8+$h$&$H$9$k$J$i$3$N%m%0$H%5!<%P$N(B $B%(%i!<%m%0$r8+$k$H$h$$$G$7$g$&!#(B

$BL\

$B$H$+$2$KCm0U(B: $B7Y9p$H;vNc(B

$BCm0U(B! $B$3$N>O$O40A4$G$O$"$j$^$;$s!#(B $B$3$N>O$N:G?72~D{HG$K$D$$$F$O!"(B Apache $B%0%k!<%W$N(B $B%*%s%i%$%s%I%-%e%a%s%H(B$BHG$r;2>H$7$F$/$@$5$$!#(B

$B%5!<%P$N@_Dj$K@)8B$r$b$&$1$k(B wrapper $B$K$D$$$F!"(B $B$$$/$D$+6=L#?<$$E@$,$"$j$^$9!#(BsuEXEC $B$K4X$9$k(B "$B%P%0(B" $B$r(B $BJs9p$9$kA0$K$3$l$i$r3NG'$7$F$/$@$5$$!#(B

  • suEXEC $B$N6=L#?<$$E@(B
  • $B3,AX9=B$$N@)8B(B
    $B%;%-%e%j%F%#$H8zN($NM}M3$+$i!"(BsuEXEC $B$NA4$F$N%j%/%(%9%H$O(B $B2>A[%[%9%H$X$N%j%/%(%9%H$K$*$1$k:G>e0L$N%I%-%e%a%s%H%k!<%HFb$+!"(B $B%f!<%6%G%#%l%/%H%j$X$N%j%/%(%9%H$K$*$1$k8D!9$N%f!<%6$N:G>e0L$N(B $B%I%-%e%a%s%H%k!<%HFb$K;D$i$J$1$l$P$J$j$^$;$s!#(B $BNc$($P!";M$D$N2>A[%[%9%H$r@_Dj$7$F$$$k>l9g!"(B $B2>A[%[%9%H$N(B suEXEC $B$KM-Mx$J$h$&$K!"(B $B%a%$%s$N(B Apache $B%I%-%e%a%s%H3,AX$N30B&$K(B $BA4$F$N2>A[%[%9%H$N%I%-%e%a%s%H%k!<%H$r9=C[$9$kI,MW$,$"$j$^$9!#(B ($BNc$O8eF|5-:\(B)
  • suEXEC $B$N(B PATH $B4D6-JQ?t(B
    $B$3$l$rJQ99$9$k$N$O4m81$G$9!#$3$N;XDj$K4^$^$l$k3F%Q%9$,(B $B?.Mj$G$-$k%G%#%l%/%H%j$G$"$k$3$H$r3NG'$7$F$/$@$5$$!#(B $B@$3&$+$i$N%"%/%;%9$K$h$j!"C/$+$,%[%9%H>e$G%H%m%$$NLZGO(B $B$r
  • suEXEC $B%3!<%I$N2~B$(B
    $B7+$jJV$7$^$9$,!"2?$r$d$m$&$H$7$F$$$k$+GD0.$;$:$K$3$l$r$d$k$H(B $BBg$-$JLdBj(B$B$r0z$-5/$3$7$+$M$^$;$s!#(B $B2DG=$J8B$jHr$1$F$/$@$5$$!#(B

$BL\