logo
Apache Lounge
Webmasters

 

About Forum Index Downloads Search Register Log in RSS X


Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
Post new topic   Forum Index -> Apache View previous topic :: View next topic
Reply to topic   Topic: Elevating Permissions
Author
tomt



Joined: 18 Jul 2012
Posts: 3
Location: UK

PostPosted: Wed 18 Jul '12 14:49    Post subject: Elevating Permissions Reply with quote

My current web user is restricted to only be able to edit, move and delete files in specific locations.

On occasions we need to have this user to be able to move files from root and other folders.

Is there anyway we can elevate the permissions the user / web script has ?

or could we create a folder and any scripts placed in their are automatically given elevated permissions ?

This is on a closed fixed device running apache and not a public network / webserver.

Thanks
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg

PostPosted: Fri 20 Jul '12 9:30    Post subject: Reply with quote

For a single file you could do

[code]
<Files "yourscript.cgi">
Options ExecCGI
</Files>

if that is enough
Back to top
tomt



Joined: 18 Jul 2012
Posts: 3
Location: UK

PostPosted: Fri 20 Jul '12 19:25    Post subject: Reply with quote

Thanks for the reply Smile

I've got around a dozen files I'd like to run.

There all php scripts that need to be able to move, copy, edit and delete pretty much anywhere on the system.

The normal web user doesn't have these rights.

Hopefully this is possible ! Smile

Thanks
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg

PostPosted: Sat 21 Jul '12 1:20    Post subject: Reply with quote

It is possible if the user apache runs with has the permission. On *nix based systems you can set the user and the group apache shall run with
Back to top
tomt



Joined: 18 Jul 2012
Posts: 3
Location: UK

PostPosted: Sat 21 Jul '12 14:58    Post subject: Reply with quote

Thanks.
The normal user Apache runs with doesn't have the permissions.

Is it possible to elevate the permissions for specific scripts or a folder full of scripts ?

But leave the Apache user as normal for all other files ?
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg

PostPosted: Mon 23 Jul '12 10:28    Post subject: Reply with quote

tomt wrote:

Is it possible to elevate the permissions for specific scripts or a folder full of scripts ?


With mod_fcgid it is possible to the php scripts with a different user. However, since it is a closed device. Why can't you change the folder permissions by default?
Back to top


Reply to topic   Topic: Elevating Permissions View previous topic :: View next topic
Post new topic   Forum Index -> Apache