by > be the easiest and most secure way to do this. The CGI will authenticate
> the user and then should create the .forward file in the appropriate
> user's directory but the cgi is running as user nobody. Can I use seteuid
> so the process is no longer run as nobody but as that username? What
> security problems might result from this?
on your machine?) to minimize the time that the cgi spends running as
root, call seteuid() as soon as possible within the cgi. don't make any
calls to system() either.
what do you mean by "the cgi will authenticate the user"? are you using
some authentication method other than basic htpasswd/htaccess?
do the logins in your htpasswd file match the logins in /etc/passwd?
---
"... What with you being his parents and all, I think that you could
be trusted not to shaft him." -- Robert Chang, rec.games.board