-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Jim McNamara wrote:
> I didn't think it was incompatible with CentOS, I'm just stuck in
> the position of having done this probably 20 times on Debian without
> issue (past the first) and now with my first try on CentOS, I'm
> floundering badly. I changed the permissions on my BackupPC_Admin
> script from 4550 to 4750 to match yours, the owner and groups were
> already identical. I still get the same error.
>
> [root@telephony logs]# ls -al /var/www/cgi-bin/
> total 24
> drwxr-xr-x  2 root     root     4096 Dec 12 11:44 .
> drwxr-xr-x  9 root     root     4096 Dec 11 22:40 ..
> -rwsr-x---  1 backuppc apache   3993 Dec 11 18:13 BackupPC_Admin
> -rwxr-xr-x  1 backuppc backuppc   70 Dec 12 11:44 testsetuid
>
>
> When I try to run the BackupPC script I still get the common
> "premature end of script headers" message, and the most telling
> thing I find is in the suexec.log file, which complains when I try
> to run BackupPC_Admin or the testsetuid script from the wiki -
>
> [root@telephony logs]# tail suexec.log
> [2008-12-15 10:37:00]: uid: (1010/backuppc) gid: (1010/1010) cmd:
> BackupPC_Admin
> [2008-12-15 10:37:00]: file is either setuid or setgid:
> (/var/www/cgi-bin/BackupPC_Admin)
> [2008-12-15 10:38:09]: uid: (1010/backuppc) gid: (1010/1010) cmd:
> BackupPC_Admin
> [2008-12-15 10:38:09]: file is either setuid or setgid:
> (/var/www/cgi-bin/BackupPC_Admin)
> [2008-12-15 10:38:15]: uid: (1010/backuppc) gid: (1010/1010) cmd:
> testsetuid
> [2008-12-15 10:38:15]: target uid/gid (1010/1010) mismatch with
> directory (0/0) or program (1010/1010)
>
> I would love to find the suexec config, but google seems to indicate
> that if you're unhappy with suexec, your only option is to compile
> your own and remove the packeged version. That seems odd, but this
> whole rpm thing seems fairly odd as well.

Looks like you need to do these:

chown -R backuppc.backuppc /var/www/cgi-bin/
chmod 755 /var/www/cgi-bin/BackupPC_Admin

Basically suexec will help you change user from "nobody" or "www-user"
which is what apache runs as to backuppc (the owner of the file).
However, to ensure everything is secure it makes sure a lot of things
are done properly such as permissions and owner/group of the file and
directory.

Try the above and let us know how you go.

Regards,
Adam
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJRtPVGyoxogrTyiURAqJTAKCddqgvNE05BnoF60J/Roa3fLfLbwCgx/x6
7mR5wI3/Q+zSJAdgdUMiZdQ=
=sFuB
-----END PGP SIGNATURE-----


------------------------------------------------------------------------------
SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada.
The future of the web can't happen without you.  Join us at MIX09 to help
pave the way to the Next Web now. Learn more and register at
http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/
_______________________________________________
BackupPC-users mailing list
BackupPC-users AT lists.sourceforge DOT net
List:    https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki:    http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/