"sebastian nielsen" <nielsen.sebastian@gmail.com> wrote in message
news:7e909587-273b-466a-928b-90d219bc06e5@m44g2000hsc.googlegroups.com...
>I want some scripts to have root access. To accomplish that, I want to
> run my Apache2 as root. Here is the result:
>
> login as: root
> root@192.168.2.100's password: root
> Last login: Fri Mar 7 16:27:22 2008
> Linux ubuntu 2.6.22-14-server #1 SMP Sun Oct 14 23:34:23 GMT 2007 i686
>
> The programs included with the Ubuntu system are free software;
> the exact distribution terms for each program are described in the
> individual files in /usr/share/doc/*/copyright.
>
> Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
> applicable law.
> root@ubuntu:~# env CFLAGS="-DBIG_SECURITY_HOLE"
<SNIP>
> root@ubuntu:~# apache2
> Syntax error on line 125 of /etc/apache2/apache2.conf:
> Error:
> Apache has not been designed to serve pages while
> running as root. There are known race conditions that
> will allow any local user to read any file on the system.
> If you still desire to serve pages as root then
> add -DBIG_SECURITY_HOLE to the CFLAGS env variable
> and then rebuild the server.
> It is strongly suggested that you instead modify the User
> directive in your httpd.conf file to list a non-root
> user.
> <b>root@ubuntu:~#</b>

Read the error message, you've only done half of what it told you to do -
after adding -DBIG_SECURITY_HOLE to CFLAGS you need to rebuild the server
(as in recompile from source), not just try running it.