Path: csiph.com!v102.xanadu-bbs.net!xanadu-bbs.net!feeder.erje.net!eu.feeder.erje.net!xlned.com!feeder1.xlned.com!newsfeed.xs4all.nl!newsfeed2.news.xs4all.nl!xs4all!post.news.xs4all.nl!not-for-mail
Return-Path: <python-python-list@m.gmane.org>
X-Original-To: python-list@python.org
Delivered-To: python-list@mail.python.org
X-Spam-Status: OK 0.006
X-Spam-Evidence: '*H*': 0.99; '*S*': 0.00; 'root': 0.05; 'alter': 0.09; 'received:80.91': 0.09; 'received:80.91.229': 0.09; 'received:gmane.org': 0.09; 'received:list': 0.09; 'subject:script': 0.09; 'runs': 0.10; 'exploits': 0.16; 'received:80.91.229.3': 0.16; 'received:plane.gmane.org': 0.16; 'subject:Apache': 0.16; 'subject:issue': 0.16; 'subject:run': 0.16; 'sudo': 0.16; 'subject:python': 0.16; 'command': 0.22; 'install': 0.23; 'url:home': 0.24; 'environment': 0.24; 'header:X -Complaints-To:1': 0.27; "i'm": 0.30; 'restricted': 0.31; 'subject:that': 0.31; 'file': 0.32; 'open': 0.33; "can't": 0.35; 'similar': 0.36; 'should': 0.36; 'received:76': 0.38; 'to:addr :python-list': 0.38; 'anything': 0.39; 'to:addr:python.org': 0.39; 'system.': 0.39; 'received:org': 0.40; 'even': 0.60; 'account': 0.65; 'nobody': 0.68; 'accounts.': 0.74; 'gain': 0.79; 'subject:let': 0.93; '2013': 0.98
X-Injected-Via-Gmane: http://gmane.org/
To: python-list@python.org
From: Dennis Lee Bieber <wlfraed@ix.netcom.com>
Subject: Re: Apache and suexec issue that wont let me run my python script
Date: Tue, 04 Jun 2013 20:41:49 -0400
Organization: > Bestiaria Support Staff <
References: <, , <4ed43a69-0dfe-4078-a836-db5201811761@googlegroups.com>, , > <mailman.2634.1370345254.3114.python-list@python.org>, > <, <2e1dbdc2-6bca-4c4e-93b0-4c0cddb72bc1@googlegroups.com>, , > <03d8964e-7cea-4072-b1f1-19d83e494191@googlegroups.com>, > <mailman.2637.1370346181.3114.python-list@python.org>, > <a93d5fee-e49d-4b6b-a663-059784ae0a74@googlegroups.com> <mailman.2640.1370347946.3114.python-list@python.org> <346a1363-b0e0-43f1-abb0-9e1fa61c72ea@googlegroups.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-Gmane-NNTP-Posting-Host: adsl-76-249-31-163.dsl.klmzmi.sbcglobal.net
X-Newsreader: Forte Agent 3.3/32.846
X-No-Archive: YES
X-BeenThere: python-list@python.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: General discussion list for the Python programming language <python-list.python.org>
List-Unsubscribe: <http://mail.python.org/mailman/options/python-list>, <mailto:python-list-request@python.org?subject=unsubscribe>
List-Archive: <http://mail.python.org/pipermail/python-list/>
List-Post: <mailto:python-list@python.org>
List-Help: <mailto:python-list-request@python.org?subject=help>
List-Subscribe: <http://mail.python.org/mailman/listinfo/python-list>, <mailto:python-list-request@python.org?subject=subscribe>
Newsgroups: comp.lang.python
Message-ID: <mailman.2696.1370392917.3114.python-list@python.org>
Lines: 22
NNTP-Posting-Host: 2001:888:2000:d::a6
X-Trace: 1370392917 news.xs4all.nl 15915 [2001:888:2000:d::a6]:36927
X-Complaints-To: abuse@xs4all.nl
Xref: csiph.com comp.lang.python:46989

On Tue, 4 Jun 2013 05:54:30 -0700 (PDT), Νικόλαος Κούρας
<nikos.gr33k@gmail.com> declaimed the following in
gmane.comp.python.general:


> Since, i'm root i will open the file and alter the user nobody to root.
> Can't i?
>
	ACK!  NEVER!

	root should ONLY be used to install software and create user/group
accounts. And even then using SU or SUDO or similar from a restricted
user account is safer.

	The whole reason the web-server runs as "nobody" is so that any
exploits (bugs that let outsiders gain access to a command line or
equivalent) end up in an environment where they can't do anything to the
system.
-- 
	Wulfraed                 Dennis Lee Bieber         AF6VN
        wlfraed@ix.netcom.com    HTTP://wlfraed.home.netcom.com/