[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Running CGI script as a different User?

To: John <johnbt@iname.com>
Subject: Re: Running CGI script as a different User?
From: zimpel@t-online.de (Holger Zimmermann)
Date: Thu, 29 Oct 1998 06:49:20 +0100
CC: pi3-users@johnroy.com
References: <01BE01DB.B0925C00.ayy@k2.com.br> <4.1.0.67.19981028121211.00dcf980@smtp.cyberway.com.sg>

John schrieb:
> 
> Hi,
^^
Hi John,
> 
> I'll like to know whether it is possible for the web server to let me grant
> *limited* access for my users who wants to run cgi-bin or win-cgi
> executable programs.
> 
> For example, if I grant them a cgi-bin directory:
> 
>   c:/website/users/mary/cgi-bin
^^
The mapping to user directories is a common task that you can solve with the
admin-dialog, page-register 'Mappings'. Rights you can grant with 'Realms'
for all mapped directories.

> 
> I only want to allow Mary to be able to read/write anything in her own
> directory... her CGI executable cannot do anything such as format
> hard-disk, read/write *outside* her directory (but can create/write her own
> *SUB-DIRECTORIES*, ....
> 
> And of course, John would need to have cgi-bin
> 
>   c:/website/users/john/cgi-bin
> 
> whereby he only have rights to c:/website/users/john/cgi-bin and cannot
> read/write any other directories.
^^
1.)
There's a (user) website remote administration tool called 'kiev' for
pi3web. With it you can do what you want with HTTP too. But the tool is
in an early alpha stadium. You can download it from 

http://www.johnroy.com/pi3/pi3web/files/devel/P3C-0629.exe

2.)
Another common way to maintain web contents is the usage of telnet or ftp.

3.)
The 3rd way ist the usage of a browser (client) and a web server with
upload ability for http. Netscape does it in two way: Upload files through menu
commands and with upload forms. For Pi3Web you need some configuration changes
to do it. I implemented both ways with Netscape and Pi3Web and it worked fine.

If you've further questions contact me again.
> 
> The reason is that other users are running a database cgi in other
> directories, and I don't want users Mary or John to be able to snipe these
> users' databases away.
> 
> I think the crux of this issue is whether Pi3 can execute CGI (cgi-bin,
> win-cgi or ISAPI, NSAPI scripts) as OTHER USERS other than the user in
> which Pi3 is started as.  Is that correct?
> 
> This is the most important consideration for a buying decision.  I've tried
> other web servers but they cannot do the above.
> 
> A bonus would be able to limit her CPU usage/hard-disk usage.... etc.  Is
> this possible?
> 
> thanks,
> John

-- 
with regards
Holger

---------------------------------------------------------
Holger 'Zimpel' Zimmermann    Contact me:
---------------------------------------------------------
Wendishain                    tel./fax company: on demand
Germany                       tel./fax private: on demand
---------------------------------------------------------
homepage: http://home.t-online.de/home/zimpel/
web server: surf to it from my homepage (online every
            Sunday 20:00-24:00 GMT, start shifted again)
e-Mail:     zimpel@t-online.de
--------------------------------------------------------

References:
- New user - How to configure PI3 to...
  - From: Alexandre Yuji Yamamoto <ayy@k2.com.br>
- Running CGI script as a different User?
  - From: John <johnbt@iname.com>

Prev by Date: Re: About a Config file on a UNIX server
Next by Date: Sub-Domains
Prev by thread: Re: Running CGI script as a different User?
Next by thread: Again virtual servers...
Index(es):
- Date
- Thread