How-To: Fix “command not in docroot” suexec apache error

May.02, 2008 in How To

If you’re in the process of setting up a new server, and you want users to have the ability to execute scripts in their home directory:

http://myserver.com/~myname

You will often run into problems with suexec. suexec is an apache security construct to stop users from executing scripts outside of a known path.

I was recieving the following error in my suexec.log file:

[2008-05-02 15:45:40]: command not in
         docroot (/path/to/my/script/here/)

If your server isn’t connected to the internet, or you have strict control over who has accounts on it, it’s quite safe (in my opinion) to remove the suexec restriction and subsequently resolve the errors caused by it. To do this, remove the suexec options in conf(s) files : httpd.conf and/or extra/httpd-vhosts.conf.

For example, in Apache 2 – in all sections, comment or remove the “SuexecUserGroup xxx yyy” line.

This will remove the suexec controls, which will prompt apache to drop the security checks associated with it and allow your script to execute.

Alternatively you can re-configure Apache at compilation time without the “–enable-suexec” option.

Tags: apache, suexec

Comments (1)

One Comment on “How-To: Fix “command not in docroot” suexec apache error”

trepz
August 19th, 2008 at 12:31 am
You’re talkin about Apache 1.3 right? There’s not executable called suexec in Apache2

Welcome

Welcome to Ev's Tech Thought of the Day. Here you'll find hints and tips that I've found throughout my travels and thought worthy to share with the world. Enjoy!

Recent Posts
Recent Comments
Blogroll
Categories
- apple
- database
- Development
- How To
- Humor
- iphone
- iPhone Development
- Linux
- mac osx
- mobile
- News
- Tech
- Windows
May 2008

M T W T F S S

« Apr Jun »

1 2 3 4

5 6 7 8 9 10 11

12 13 14 15 16 17 18

19 20 21 22 23 24 25

26 27 28 29 30 31

Tech Thought

Tech tips, hints, and general musings. PHP, Perl, Mysql, Javascript, AJAX, JSON, Linux, Mac OSX