Return-Path: Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 9234 invoked by uid 500); 21 Jan 2003 00:43:48 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 9222 invoked from network); 21 Jan 2003 00:43:48 -0000 Received: from mtahqs3.ncr.disa.mil (HELO pfwhqs1.ncr.disa.mil) (164.117.144.157) by 208.185.179.12.available.above.net with SMTP; 21 Jan 2003 00:43:48 -0000 Received: from no.name.available by pfwhqs1.ncr.disa.mil via smtpd (for [208.185.179.12]) with SMTP; Mon, 20 Jan 2003 19:46:26 -0500 Received: by mtahqs3.ncr.disa.mil with Internet Mail Service (5.5.2653.19) id ; Mon, 20 Jan 2003 19:46:13 -0500 Message-ID: <79ADFCDC82262842A4943012DDC7F5909513A6@emsssp2.ncr.disa.mil> From: "Lagore, James (Contractor)" To: "'users@httpd.apache.org'" Date: Mon, 20 Jan 2003 19:43:33 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" X-Spam-Rating: 208.185.179.12.available.above.net 1.6.2 0/1000/N Subject: RE: [users@httpd] File Access Rights FYI on using nobody. Sans.org states "Do NOT use the nobody account, for this account is used to map the root account over NFS". Jim -----Original Message----- From: Jacob Coby [mailto:jcoby@listingbook.com] Sent: Monday, January 20, 2003 7:09 PM To: users@httpd.apache.org Subject: Re: [users@httpd] File Access Rights > I wrote an Apache (Perl) CGI script running on Windows 2000 Server. My > script needs to generate graphics files and store them in a file. Under > Windows it looks like my script can read/write files into any directory. > > I want to migrate to RedHat Linux. What are the rules concerning Apache CGI > programs with regard to creating and writing files? I read that Apache child > processes normally run as "nobody". How can I setup my Perl CGI script so > that it has a directory into which I can write files? Thanks in advance. As the root user, run: chown nobody.nobody /path/to/images chmod 700 /path/to/images that says that user nobody group nobody owns the /path/to/images directory and that only it has read/write/execute (exec means it can look at the directory in this context) to that dir. You could also chmod 755 to say that user nobody has read/write/exec and the rest of the world has read/exec (so you can at least see whats being put there). Once that's done, you just need to modify your perl script to put its files in /path/to/images -Jacob --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org