File ownership and protection, Server extensions (cgi scripts), Open source licenses – Oracle Audio Technologies ORACLE9I B10508-01 User Manual
Page 175: Apache
Apache Server Installation/Configuration
logical names are placed in the system logical name table
accomplished by sending a KILL signal to the master process and its subprocess.
These actions require enhanced privileges (DETACH, SYSNAM, WORLD, and so
forth) and are usually performed from a suitably privileged account.
File Ownership and Protection
All of the server files reside under its root directories that are pointed to by the
APACHE$ROOT logical name
During installation, file protection is set to
(S:RWED, O:RWED, G, W)
During configuration, all files are set to be owned by
Server Extensions (CGI Scripts)
Server extensions, such as CGI scripts run within the context of the Oracle HTTP
Server process or its subprocesses
These extensions have complete control over
the server environment
You can configure the server to allow execution of
arbitrary user scripts, but standard practice is to limit such activity to scripts that
are written by completely trusted users
The Oracle HTTP Server includes
directives that allow a web administrator to control script execution and client
The use of these directives is described in numerous books and is not
suEXEC Not Available for Protecting Script Execution
The Oracle HTTP Server for OpenVMS does not currently support the suEXEC
method of executing scripts under the username that owns the script
use this feature to allow execution of arbitrary, user-written scripts without the fear
of compromising the server environment.
Open Source Licenses
This section provides open source license acknowledgments and license references.
This product includes software developed by the Apache Software Foundation
You can view the license at the following web site: