ID: 13247 Updated by: hholzgra Reported By: [EMAIL PROTECTED] Old Status: Open Status: Feedback Bug Type: Unknown/Other Function Operating System: Cobalt OS PHP Version: 4.0.4pl1 New Comment: i'm pretty sure php doesn't touch your file ownerships more likely you have either root as primary group for user apache in /etc/passwd or sicky bits set for the directory ... ? Previous Comments: ------------------------------------------------------------------------ [2001-09-11 09:23:06] [EMAIL PROTECTED] Here is my configure line : './configure' '--with-mysql' '--with-gd' '--with-ttf' '--enable-bcmath' '--enable-calendar' '--enable-memory-limit' '--enable-safe-mode' '--with-imap' '--enable-ftp' '--enable-sockets' '--with-apxs' The script that is used is as simple as : <? @move_uploaded_file($file, "/path/to/my/directory/filename"); ?> My Apache webserver runs as user and group httpd. Now the really annoying thing is that whenever my customer or myself upload a file, the uploaded file is correctly moved but the ownership is set to httpd.root ( user httpd and group root ) Now this is a real big problem for my ( even without considering the security hole it represents ) because my customers cannot manage to erase these files anymore afterwards via FTP, because their uid will not let them touch these files. ------------------------------------------------------------------------ Edit this bug report at http://bugs.php.net/?id=13247&edit=1 -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
