[Resolved] Upload Dir perm. - 777 works 775 doesn't

freebie

I'm trying to figure out why permissions work for file upload on a directory with permission set at 777 (owner is "root", group is "apache"), but doesn't work for 775. I'm using a file upload class and it's the call to "copy('...')" that fails when permissions are at 775. I would think that command gets run as either root or apache when called from PHP. I would like to not have 777 (world writable) permissions if possible. Can anyone offer some guidance as to how I figure out what the user this command is being run under, or anything else that I might be confused about regarding this problem.
Thanks for any thoughts.

piersk

The reason that 775 doesn't work is because you need to allow the public (i.e anyone who is not the owner, nor is in the owner group) to write, which 775 doesn't allow. if you keep your upload folder seperate from anything else (i.e. dont put any scripts that control the site in there) then everything should be ok.

freebie

Thanks for the reply.
I do understand the difference btw 777 and 775, but I would hope not to have to make the directory writable by anyone (for security reasons). I also tried setting the group as "nobody" instead of "apache", but that didn't work either.
The way I see it, this operation has to happen under some user account, right? If not, could I force it to?

piersk

Yeah, it happens under whatever user account your web server runs under.

freebie

thanks