Hi Folks, > mpm_itk causes the webserver to run as root, but to drop permissions on > request (i.e. when http://www.youdomain.com/yourdirectory is requested) > The User, Group in the apache config (not the vhost) is used only when > you have not specified one specifically for the vhost. > > If you specify one for the vhost (like you did) it will run everything > (mod_php and CGI included) as the user specified UNLESS, you use suexec > or suPHP. In which case, you can specify a different user for running > CGI and PHP scripts.
Until here it's ok. I want to add a restiction that suPHP provide like: allow_file_group_writeable=false allow_file_others_writeable=false allow_directory_group_writeable=false allow_directory_others_writeable=false check_vhost_docroot=true docroot=/test I want that my server don't serve file if the permission is not good like this people are forced to have a good permission for files and directories and not putting permissions like 777. > > The only case I can think of for using both itk and suPHP is when you > want the CGI/HTML/etc to be read as a different user than PHP scripts > run as. Others are free to correct me there. What I want: For each Vhost - Apache instance run as virtual user - CGI/HTML/... run as the same virtual user - Don't serve files if the permission is not ok > Just my ten cents, I would love to see discussion on this topic. I have receive some reply from others persons. Please use "Reply to all" like this the answer can be on this ML and our knowledge can be useful for others. > > Thanks, > Will Thanks _______________________________________________ suPHP mailing list [email protected] https://lists.marsching.com/mailman/listinfo/suphp
