My Apache httpd server runs as 'nobody' under Linux. I've got a perl
script that worked as expected.
However, to increase security a bit, I set up a 'cgi-bin' group under
Linux and made user 'nobody' a member.
Then I disallowed execution by anybody not a member, and also denied
access to the directory.
Next thing I see is a 'Forbidden' message saying I don't have permission
to access the script.
After I execute a chmod o+x on the script (leaving the directory only
group-rwx'able), everything runs fine again!
I've had the script made a call to whoami at runtime and it's in fact
running as 'nobody'!