MAHUS: Maybe A Hacked-Up Suexec

Project Lead:

Tommer (0 credits)

 

Bounty:

US $0.00(Sponsor Project)
Please create a secure, diagnostic, permissive, temporary drop-in replacement for the Apache suexec[1] tool, based on a conversation that went like this: "Maybe a hacked-up suexec that runs everything but sends mail when it would have been disallowed? Then you don't have to watch the log, just fix things as you get email and switch to a real secure suexec once it stops sending you mail."
 
Note: You can propose changes using the forum below.
Please create a secure, diagnostic, permissive, temporary drop-in replacement for the Apache suexec[1] tool, based on a conversation that went like this: "Maybe a hacked-up suexec that runs everything but sends mail when it would have been disallowed? Then you don't have to watch the log, just fix things as you get email and switch to a real secure suexec once it stops sending you mail."

MAHUS must be a from-scratch C program that does everything suexec.c does (including using suexec.h for some of its configuration).

MAHUS is intended to ease the transition of crufty, "chmod 777"-based mass virtual hosting systems to a suexec-wrapped CGI world.

If Apache suexec (based on suexec.h) would have denied a CGI call, but it passes MAHUS' minimum security checks for the pre-suexec world, then the CGI continues and a detailed notification (log entry, email, page, singing telegram, etc.) describes what needs to be done to the executable and its directories before it will be run by Apache suexec. This makes it possible to just 'switch on' suexec in your Apache config without ever dropping a CGI request, providing a smooth transition to very secure CGI permissions from none at all.

At no point should the system suggest or enable automation of the correction of permissions!
MAHUS should only be used for short periods of time. Suggestions as to how to encourage that are most welcome.

Links
1. http://httpd.apache.org/docs/2.2/suexec.html
Post a Comment

There are currently no comments in this forum.

FOSS Factory Source