Re: Making files readable for the webserver

To: debian-devel@lists.debian.org
Subject: Re: Making files readable for the webserver
From: Matt Zimmerman <mdz@debian.org>
Date: Thu, 26 Jul 2001 01:54:40 -0400
Message-id: <[🔎] 20010726015439.A6301@alcor.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010726144751.E27953@svana.org>
References: <[🔎] Pine.LNX.4.31.0107260626001.7747-100000@phobos.fachschaften.tu-muenchen.de> <[🔎] 20010726144751.E27953@svana.org>

On Thu, Jul 26, 2001 at 02:47:51PM +1000, Martijn van Oosterhout wrote:

> On Thu, Jul 26, 2001 at 06:28:52AM +0200, Simon Richter wrote:
> > Hi,
> > 
> > I have a package (uprecords-cgi) which has some config files that need to
> > be readable for the webserver (specifically, for a CGI script). Is there
> > any definition how the permissions should look like (644 root.root, 640
> > root.www-data, ...)?
> 
> Unless there is security sensetive data in there, I'd suggest 644. Config
> files that are not world readable are quite annoying.
> 
> As for the group, I figured that the www-data group was mostly for the
> actual files being served rather than the files used by the webserver.

Unfortunately, the www-data user/group are misnamed.  Web servers and CGI
scripts typically run as www-data.www-data, and so actual "WWW data" should not
be owned by this user, and should at most be readable by the group.

-- 
 - mdz

Reply to:

References:
- Making files readable for the webserver
  - From: Simon Richter <Simon.Richter@phobos.fachschaften.tu-muenchen.de>
- Re: Making files readable for the webserver
  - From: Martijn van Oosterhout <kleptog@svana.org>

Prev by Date: Re: Making files readable for the webserver
Next by Date: Re: state of debian multimedia etc.
Previous by thread: Re: Making files readable for the webserver
Next by thread: deps on non-free [Bug#106427: printtool: versioned deps for gs]
Index(es):
- Date
- Thread