Hey all-
I'm writing some PHP scripts that have the ability to delete, rename,
upload, etc. files to the webserver. It's a simple on-line file manager for
some family members.
The question: I don't want to allow apache to delete certain files,
specifically files that are owned by root. But it can. I made a simple
phpinfo.php file and I can delete it with this file manager. I don't think
it ought to, since it's run as user nobody (httpd.conf setting). I've tried
changing the setting in httpd.conf to a new user called apache, still no
good.
Doing a "ps aux" from the bash prompt says that apache has about 6 or 8
processes, the first of which is being run as root; the rest are apache (or
nobody, depending on the httpd.conf setting). To remedy this, I stopped
apache and then restarted it with:
su -c "/usr/local/apache2/bin/apachectl start" apache
It wouldn't start, complaining that it couldn't access the log file.
I've tried chown'ing the inaccessable files, I've tried doing my make
install as user apache, all did no good.
Does anyone know a good solution to this problem? How to get apache to
run completely as a user other than root?
Thanks in advance,
Jake
LandEZ
--
PHP Install Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
