Re: suexec permissions
On Monday 10 January 2005 12:05, nodata wrote:
> > On Monday 10 January 2005 11:34, nodata wrote:
> >> > nodata wrote:
> >> Ah this would explain things more - but then shouldn't running
> >> http://website/cgi-bin/test.pl work? I get the same search permissions
> >> error..
> > Why of course. The server doesn't 'know' anything about that file (or
> > that it
> > even exists) until it can 'stat' it. And now it _cannot_ stat it ;-)
> > It sound like a chicken and egg problem to me.
> > Maarten
> Ah. So what do other people do?
Dunno, I'm not really into apache in a deep way.
> I could chgrp www-data, but then suexec complains.
> I could give o+rx access, but then I'm left with anyone on the machine
> being able to read everything.
Experiment. Maybe setting 711 on the directories leading up to that file
changes things enough ? Or maybe leaving all dirs 755 (but not the files
itself) fixes it and leaves enough security for your setup ? Try it.