On Thu, 18 Dec 2008, Felipe de Jesús Molina Bravo wrote: > 2008/12/18 db <reiman2...@gmail.com> > try with nobody... > replace ownership of /etc/httpd/mason to 'nobody:nobody', and/or > change User/Group settup to 'nobody' in httpd.conf > > DIDN'T solve the issue. web page returns same error. > > My configuration is: > - for directory of mason: > drwxr-xr-x 4 nobody nogroup 96 oct 22 10:29 mason > - in my httpd.conf: > User nobody > Group #-1 > > - in /etc/passwd > nobody:x:65534:65534:nobody:/:/bin/false > - in /etc/group > nogroup:x:65533:
> mkdir /etc/httpd/mason/obj/: Permission denied at > /usr/lib/perl5/site_perl/5.8.5/HTML/Mason/Compiler/ToObject.pm > line 107 'nobody' probably will not work because your server runs as 'apache' in RedHat. Are you running with taint mode? It looks like the file name is not detainted until after creating it, which is probably a bug at line 114 of ToObject.pm... have you considered using a more recent version of Mason? For this to work it seems like your permission should be: chown apache:apache /etc/httpd/mason chmod 755 /etc/httpd/mason Does the directory /etc/httpd/mason/obj already exist, but with permissions that cannot be read by the web server to determine if it does exist? Can we see output of `ls -la /etc/httpd/mason/` please. Incidentally it might make sense to set it to compile mason objects to files in a directory other than /etc, which is supposed to be for configuration. For instance, somewhere in /var might be more appropriate. Mark
