ID: 18500 User updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: No Feedback +Status: Open Bug Type: PHP options/info functions Operating System: Solaris 2.8 PHP Version: 4.2.1 New Comment:
Hi, first of all thank you for working on this bug. Unfortunately I have to report that with php-4.3.0-pre1 the bug is still there (see output below). Webserver used is apache-1.3.27 on solaris 2.8 (bug also was there with apache-1.3.26). PHP still reports "script with uid=1 ..." User id 1 belongs to: bash-2.03$ id daemon: uid=1(daemon) gid=1(other). apache is started as user webamdin, uid's and file permissions see below. Kind regards, Bert Courtin --- [24-Okt-2002 09:39:55] PHP Warning: file_exists() [<a href='http://www.php.net/function.file-exists'>function.file-exists</a>]: SAFE MODE Restriction in effect. The script whose uid is 1 is not allowed to access /a/b/c/d/e/f/g/themes_d.string owned by uid 2003 in /w/x/y/z/main_uebersicht.html on line 124 bash-2.03$ ls -la /a/b/c/d/e/f/g/themes_d.string -rw-r----- 1 webadmin httpd 10772 Feb 26 2002 /a/b/c/d/e/f/g/themes_d.string bash-2.03$ ls -la /w/x/y/z/main_uebersicht.html -rw-r----- 1 webadmin httpd 16111 Jun 19 17:53 /w/x/y/z/main_uebersicht.html bash-2.03$ id webadmin uid=2003(webadmin) gid=1083(web) bash-2.03$ id httpd uid=2002(httpd) gid=1082(httpd) bash-2.03$ ps -ef | grep httpd | head -1 webadmin 20534 20514 0 09:37:58 ? 0:00 /opt/apache-1.3.27/daybyday/bin/httpd -DSSL bash-2.03$ Previous Comments: ------------------------------------------------------------------------ [2002-10-15 01:00:04] [EMAIL PROTECTED] No feedback was provided for this bug for over 2 weeks, so it is being suspended automatically. If you are able to provide the information that was originally requested, please do so and change the status of the bug back to "Open". ------------------------------------------------------------------------ [2002-09-29 22:29:05] [EMAIL PROTECTED] Please try using this CVS snapshot: http://snaps.php.net/php4-latest.tar.gz For Windows: http://snaps.php.net/win32/php4-win32-latest.zip If you still experience this problem, please include the info about the Web Server you are using in your reply. ------------------------------------------------------------------------ [2002-07-23 12:31:41] [EMAIL PROTECTED] Hi, when using SAFE_MODE = ON, php reports a wrong uid on a file to be served. It reports file has uid=1 althought it should report (and therefore serve the page) uid=2003. Details: I will get the following error: -------- [23-Jul-2002 17:47:06] PHP Warning: SAFE MODE Restriction in effect. The script whose uid/gid is 1/2003 is not allowed to access /a/b/c/d/e/partner_sets.inc owned by uid/gid 2003/1082 in /w/x/y/z/login_tol.html on line 13 [23-Jul-2002 17:47:06] PHP Fatal error: Failed opening required '/a/b/c/d/e/partner_sets.inc' (include_path='.:/opt/php-4.2.1/lib/php') in /w/x/y/z/login_tol.html on line 13 --------- Where "/a/b/c/d/e/partner_sets.inc" is included from "/w/x/y/z/login_tol.html" which is part of a frame of "/w/x/y/index.html". (<frame src="/z/login_tol.html"...>) It seems that the uid which is reported is wrong (1) and the gid wich is reported (2003) is the uid which should be reported (see below). File ownership/permissions are as follows: -------------------------------------------- ls -la /w/x/y/index.html -rw-r----- 1 webadmin httpd 3106 Nov 2 2001 /w/x/y/index.html ls -la /w/x/y/z/login_tol.html -rw-r----- 1 webadmin httpd 15343 Apr 15 10:56 /w/x/y/z/login_tol.html ls -la /a/b/c/d/e/partner_sets.inc -rwxr----- 1 webadmin httpd 897 Feb 26 20:20 /a/b/c/d/e/partner_sets.inc User / group IDs are: ----------------------- # id httpd uid=2002(httpd) gid=1082(httpd) # id webadmin uid=2003(webadmin) gid=1082(httpd) The apache server is running as uid/group httpd/httpd. Kind regards, Bert Courtin ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=18500&edit=1
