This happens every time I stop/restart Apache.
However, it starts just fine and from what I can tell so far, I think I have no PHP/CGI related issues or other errors. I checked all other error logs from my virtual servers and they don’t contain any SuExec warnings or errors.
Does this happen because SuExec docroot is not set to the default htdocs but to a different drive for my "home" directories? Since it seems to affect only the MAIN log file it looks like that to me.
How about the session cache warning? Where can I configure this in Virtualmin/Webmin?
Does this happen because SuExec docroot is not set to the default htdocs but to a different drive for my "home" directories? Since it seems to affect only the MAIN log file it looks like that to me.
No, I believe it’s that it can’t find the suexec binary. suexec is a program unto itself, and Apache needs to know how to find it. Check to see where it thinks it should be, and then make sure your suexec binary is really there and is really set suid:
httpd -V | grep SUEXEC_BIN
We have suexec docroot pointing somewhere other than the default document directory–so what you describe is definitely not a problem.
The session cache is set with the SSLSessionCache directive. In Webmin this directive can only be set using the Edit Config Files option (it’s usually preset and no one ever needs to change it…so why both cluttering up the interface…but I guess it isn’t set by default on Mac OS X).
The path to the suexec binary must be hard-coded in the server for security reasons. Use this option to override the default path. e.g. --with-suexec-bin=/usr/sbin/suexec
Will try if symlinking does the trick but I don’t think so. SuExec seems to be soooo picky.
I just wish I would know how to debug these messages. They used to appear if the Apache config was screwd up. But now Apache doesn’t show any warnings during startup so…
Oh well… I am still testing if there is any erratic behavior of scripts using SuExec. If I find out what causes this I’ll let you know…
Shouldn’t have said it again… I was really convinced the path to the suexec binary was set correct but…
I was just reading the suExec docu on apache.org again and it says specifically:
Upon startup of Apache, it looks for the file suexec in the directory defined by the --sbindir option (default is "/usr/local/apache/sbin/suexec"). If Apache finds a properly configured suEXEC wrapper, it will print the following message to the error log:
[notice] suEXEC mechanism enabled (wrapper: /path/to/suexec)
THAT was the clue! I bet almost every install where suexec is NOT throwing this message it will NOT work properly, just like it did for me. Yeah sure it was working… but not the way it was supposed to. I find the warnings in the log only a bit limited to "guess" whats really going on.
Anyway, I recompiled the whole damn thing, changed the path, checked the path on apache2 and suexec again and again and as far as the warnings are concerned, they are no more.
Awesome, thanks for the update Tony! Glad to hear things are progressing.
As you’ve noted you can’t screw around with paths and such when it comes to suexec–suexec is a really dangerous piece of code, as it can execute arbitrary code as any user. So, it refuses to do anything that might allow you to do something stupid.