I have a CGI application I'm trying to install, qmailAdmin, but it needs to run SUID as another account. However, if the program is marked with any suid bits, then LS won't execute it. If I remove the SUID bits, then the application will run, but won't operate properly as the user for the webserver.

What can I do to run SUID CGI applications under LS?

Thanks,
John

Ok, I've found a work around. I renamed the /cgi-bin/qmailadmin to /cgi-bin/qmailadmin-real. I then created a shell script called /cgi-bin/qmailadmin which just runs qmailadmin-real.

John

Yes, for security reason, current lsws does not allow SUID CGI. Your work around is OK but introduce extra overhead (one more process has to run).

We are going to provide suexec solution in future release.

Lauren