21/10/2008, 08:26
|
| | | Fecha de Ingreso: enero-2003 Ubicación: Argentina
Mensajes: 261
Antigüedad: 21 años, 11 meses Puntos: 1 | |
Respuesta: Acerca de los owners y PHPsuExec Mi consulta fue que necesitaba todos los archivos usando el nombre de la cuenta en vez de nobody nobody.
Y esta fue la respuesta: Cita: PHP of your VPS is compiled as non-PHPsuExec. At present PHP is running as an apache module ( non-phpsuexec) and this requires directories to have 777 permission for uploading/editing.
That is, when PHP runs as an Apache Module it executes as the user/group of the webserver which is usually "nobody". Under this mode, files or directories that you require your php scripts to write to need to have 777 permissions (read/write/execute at user/group/world level).
This is not very secure because besides allowing the webserver to write to the file it also allows anyone else to read or write to the file.
PHPsuExec:
PHPsuExec fixes all this because it requires php to be run as the file owner's username.With PHP running as CGI with suexec enabled your php scripts now execute under your user/group level. Files or directories that you require your php scripts to write to no longer need to have 777 permissions.
In fact, having 777 permissions on your scripts or the directories they reside in will not run and will instead cause a 500 internal server error when attempting to execute them to protect you from someone abusing your scripts. Your scripts and directories can have a maximum of 755 permissions (read/write/execute by you, read/execute by everyone else).
If you need to enable PHPsuExec on the server, then you need to note the following points:(if any of the following requirements fail, your site will show up an internal server error).
1. The php script that you are attempting to execute has permissions of no more than 755 - 644 will work just fine normally, this is not something that will need to be changed in most cases.
2. The permission of the directory that the script resides within is set to a maximum of 755. This also includes directories that the script would need to have access to also.
3. You shouldn't have a .htaccess file with php_values within it. They will cause a 500 Internal server error, when attempting to execute the script.
4.The php_values will need to be removed from your .htaccess file and a php.ini put in its place, containing the php directives as explained above.
Please let us know, if you want to enable PHPsuExec.
__________________ El dinero no te cambia, te delata... |