View Single Post
  #3  
Old 15th October 2005, 19:15
themachine themachine is offline
Senior Member
 
Join Date: Oct 2005
Location: Texas, USA
Posts: 109
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Its safe to say that in most apache installations... as long as the apache user has group ownership of the web directories it should be able to serve the pages. Note that the sub directories will inherit the stricter perms of its parent.

Forexample.

Code:
# ls -lah /home
drwx------   3 username www-data 4.0K Oct 15 12:01 username

# ls -lah /home/username
drwxr-sr-x  2 username www-data 4.0K Oct 15 12:01 web
If this was the case, even though the apache user 'www-data' has read/exec perms on '/home/username/web', it will *not* be able to read/execute because the parent directory '/home/username' is 'drwx------'. In order for the 'www-data' user to be able to read/exec '/home/username/web' you would need to do the following:

Code:
# chmod 750 /home/username

# ls -lah /home
drwxr-x---   3 username www-data 4.0K Oct 15 12:01 username
And the same goes for '/home'. If '/home' doesn't allow read/execute for user/group/other then you will most likely run into permissions issues.

As far as permissions, that is the basics to atleast allow access for the apache user. If you don't want group ownership to be the apache user, then the parent/sub dirs need to have aleast 755 permissions to allow everyone to read/traverse the directories in order to hit the webroot.

Hope that helps.

[dierkes.themachine]
Reply With Quote