Apache2/PHP permissions in ISP environment

To: debian-user@lists.debian.org
Subject: Apache2/PHP permissions in ISP environment
From: Simon <dev@networker.co.nz>
Date: Mon, 13 Jun 2005 17:06:58 +1200
Message-id: <[🔎] 42AD1472.3040500@networker.co.nz>

Hi there, we are running debian sarge for a virtual hosting box. PHPsafe mode is on for all users with a host of other php_admin_values etc.We are running name based virtual hosting for all hosts except SSL hostswhich have their own IP... We are using pureftpd for our FTP server,with the u/p in a mysql database and chrooting the users in their dir.

Currently the server runs as the debian default of www-data.www-data..and the users are all loggin in as www-client(1000).www-data..

So, when PHP creates a file 'test.txt' (www-data.www-data), a scriptuploaded via FTP 'alterfile.php' (www-clients.www-data) cantchange/delete the generated file 'test.txt'.

i have setup the users etc up like that as the users FTP into adirectory: /www/www.exmaple.com/, in that dir there are: backups/,htdocs/, logs/, statistics/, ssl/. they can read everything, but onlywrite to htdocs/.


Does anyone have any suggestions on how to get around the above problem?

How do i allow users to create files (with PHP) with the user ofwww-data, but still restrict some other directorys from writing?


Is this a bad thing in the first place?

Simon

Reply to:

Follow-Ups:
- Re: Apache2/PHP permissions in ISP environment
  - From: Ugo Bellavance <ugob@camo-route.com>

Prev by Date: Re: sarge: post-install sata drive cause startup failure
Next by Date: Ifconfig
Previous by thread: Re: Fourth Mouse Button
Next by thread: Re: Apache2/PHP permissions in ISP environment
Index(es):
- Date
- Thread