We have a client who executes .py files in their main public_html directory which works fine.
The issue is that when we install and configure the kernelcare symlink patch, suexec no longer works since /usr/sbin/suexec is a symlink. The only way to allow the client to still execute .py files is to disable suexec, which itself seems like a security risk, since the file is now running as the apache user and not the local user.
Is there any way around this? Can we somehow manually set the kernelcare symlink patch to allow access to the /usr/sbin/suexec symlink via the
/etc/sysconfig/kcare/sysctl.conf file?
The issue is that when we install and configure the kernelcare symlink patch, suexec no longer works since /usr/sbin/suexec is a symlink. The only way to allow the client to still execute .py files is to disable suexec, which itself seems like a security risk, since the file is now running as the apache user and not the local user.
Is there any way around this? Can we somehow manually set the kernelcare symlink patch to allow access to the /usr/sbin/suexec symlink via the
/etc/sysconfig/kcare/sysctl.conf file?
Last edited by a moderator:
