777 - any other way? - PHPBuilder Forums

777 - any other way?

furanku

Hi,
with PHP (at Apache/1.3.27 (Unix)) i need my dir on 777 to write files. But this means everybody could. Thats what i dont want.
As far as i know its because PHP is unknown by the server - so it needs 777.

-How can i write files without have my dir in 777 mode?
-Or can change the dir to 777, write the file, and change back to 775?
-Or how can i give PHP the permissions of the owner?

Thanks
Ciao Fu-Ran-Ku

Jeb_

PHP runs under the user for Apache, which by default is "nobody".

First question: Make the group for that directory "nobody", and give the group permissions of +rwx (0770). With appropriate permissioning you should have no security worries.

Second question: You can't unless PHP is the owner of the directory.

Third question: You would need to modify the Apache httpd.conf to change the user it (Apache) runs under. This will then filter down to PHP.

I suggest doing the first option.

furanku

Hey, thanks a lot.
Needs a lot time to find an answer.

I wonder if PHP_AUTH_USER of Apaches REMOTE_USER could help with third owner change. Or is this only readable?
Couldnt find any doc, only that it is set by the browser authentification.

Jeb_

I don't quite understand what you're saying.

However, regardless of what environment variables you mess with, it won't change anything because the permissions are set on the filesystem itself. They are enforced by the operating system, and so Apache has to abide by them.