File ownership and protection, Server extensions (cgi scripts), Open source licenses – Oracle Audio Technologies ORACLE9I B10508-01 User Manual

Page 175: Apache

background image


Apache Server Installation/Configuration


logical names are placed in the system logical name table


Shutdown is

accomplished by sending a KILL signal to the master process and its subprocess.

These actions require enhanced privileges (DETACH, SYSNAM, WORLD, and so
forth) and are usually performed from a suitably privileged account.

File Ownership and Protection

All of the server files reside under its root directories that are pointed to by the
APACHE$ROOT logical name


During installation, file protection is set to



During configuration, all files are set to be owned by


Server Extensions (CGI Scripts)

Server extensions, such as CGI scripts run within the context of the Oracle HTTP
Server process or its subprocesses


These extensions have complete control over

the server environment


You can configure the server to allow execution of

arbitrary user scripts, but standard practice is to limit such activity to scripts that
are written by completely trusted users


The Oracle HTTP Server includes

directives that allow a web administrator to control script execution and client


The use of these directives is described in numerous books and is not

duplicated here.

suEXEC Not Available for Protecting Script Execution

The Oracle HTTP Server for OpenVMS does not currently support the suEXEC
method of executing scripts under the username that owns the script


Many sites

use this feature to allow execution of arbitrary, user-written scripts without the fear
of compromising the server environment.

Open Source Licenses

This section provides open source license acknowledgments and license references.


This product includes software developed by the Apache Software Foundation


You can view the license at the following web site: