How to run another instance of Apache safely?

[mikerayner]

The Email tracking software that we’re gonna use requires mod_perl however the Apache user (nobody) should has to access to the tracking software’s database configuration file -which stores database passwords- on a shared hosting server other users can read those configuration files via Perl programming; obtaining access to root of the email tracking software.

To resolve this security issue we have to run another instance of Apache with mod_perl and perl-suid then proxy request the alias of tracking software from shared Apache instance.

Would you please help on how to run another instance of Apache (buildapache.sea) safely?

 

[Brownie]

to do what you want to do, you're going to have to install a second instance of apache and compile it all by hand - using buildapache will just override your existing apache.

You can get information about compiling apache at www.apache.org

 

[SHSaeed]

/usr/local/apache/bin/httpd -f /usr/local/apache/conf/httpd2.conf

This will start another instance of apache using a different config file. It should get you on the right track.

 

[mikerayner]

How to install SuidPerl (RH7.3) ? Also how can we restrict access of shared instance of apache to suidperl while the second instance has access?