On 11/30/2012 05:07 PM, Ken Kixmoeller (ProFox) wrote:
OK, instead of chown, I changed the user and group of Apache in the
configuration file. It worked!
Usually the user under which httpd runs has their login shell set to
"/sbin/nologin", so there is no way anyone can login to the system a
user apache. It might be a security risk to run httpd under a normal
user that has a login shell of "/bin/bash", for example. If your web
server is exposed to the internet, I would revert back to the default
user and group for running httpd.
My web server runs under user "apache" and group "apache", and I'm user
leland with a /bin/bash login shell. Therefore, all my web directories
are set to owner leland and group apache. Here's an example of how I
can chown to leland in my system, (eg -R reclusive, -v verbal, -f force).
chown -Rvf leland /var/www/*
This allows me to fire up Komodo, my IDE, which runs under leland, so
I'm able to read, write, and execute all content within my web tree.
Next I change the web tree to group "apache" as follows:
chgrp -Rvf apache /var/www/*
This allow httpd to access all content within the web tree.
Next I set my permissions in my web tree to 755 as follow:
chmod -Rvf 755 /var/www/*
The allows leland to read, write, and execute all content in the web
tree, and apache to read and execute all content in the web tree. If
there is a need for httpd to write anything withiin the web tree, that
directory and/or file should be set to 775.
That's it.
Regards,
LelandJ
Hoop-de-do!
Next step: I am going to have a beer. Maybe a nice IPA. Friday reward.
Thanks again to all....
HAGW, everyone.
Ken
On Fri, Nov 30, 2012 at 4:22 PM, Ken Kixmoeller (ProFox) <
[email protected]> wrote:
On Fri, Nov 30, 2012 at 3:25 PM, Ed Leafe <[email protected]> wrote:
You might need to use 'chown' to change the owner to the user
that apache is running as.
OK, I'll go to try to figure out that. I remember the configuration file
saying the owner & group....
I like a mystery, but I'd like this damn thing to work even more........
--- StripMime Report -- processed MIME parts ---
multipart/alternative
text/plain (text body -- kept)
text/html
---
[excessive quoting removed by server]
_______________________________________________
Post Messages to: [email protected]
Subscription Maintenance: http://mail.leafe.com/mailman/listinfo/profox
OT-free version of this list: http://mail.leafe.com/mailman/listinfo/profoxtech
Searchable Archive: http://leafe.com/archives/search/profox
This message:
http://leafe.com/archives/byMID/profox/[email protected]
** All postings, unless explicitly stated otherwise, are the opinions of the
author, and do not constitute legal or medical advice. This statement is added
to the messages for those lawyers who are too stupid to see the obvious.
