Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 51176 invoked from network); 26 Feb 2008 19:00:51 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 26 Feb 2008 19:00:51 -0000 Received: (qmail 21063 invoked by uid 500); 26 Feb 2008 19:00:37 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 20915 invoked by uid 500); 26 Feb 2008 19:00:37 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 20904 invoked by uid 99); 26 Feb 2008 19:00:37 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 26 Feb 2008 11:00:37 -0800 X-ASF-Spam-Status: No, hits=2.0 required=10.0 tests=FM_FAKE_HELO_VERIZON,HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of rich.geddes@verizon.net designates 206.46.173.3 as permitted sender) Received: from [206.46.173.3] (HELO vms173003pub.verizon.net) (206.46.173.3) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 26 Feb 2008 18:59:50 +0000 Received: from [192.168.0.150] ([96.245.44.162]) by vms173003.mailsrvcs.net (Sun Java System Messaging Server 6.2-6.01 (built Apr 3 2006)) with ESMTPA id <0JWV00L3T0MXIMV3@vms173003.mailsrvcs.net> for users@httpd.apache.org; Tue, 26 Feb 2008 12:57:00 -0600 (CST) Date: Tue, 26 Feb 2008 13:58:56 -0500 From: Richard Geddes In-reply-to: <47C460C8.2070101@verizon.net> To: users@httpd.apache.org Message-id: <47C46170.4000008@verizon.net> MIME-version: 1.0 Content-type: multipart/alternative; boundary="Boundary_(ID_Jq4BjQcyIDHqByakboDyVA)" X-Enigmail-Version: 0.95.0 References: <47C2594C.30706@verizon.net> <47C43968.2090004@verizon.net> <1204047623.10271.20.camel@athene.bestsolution.at> <47C460C8.2070101@verizon.net> User-Agent: Thunderbird 2.0.0.6 (X11/20071022) X-Virus-Checked: Checked by ClamAV on apache.org Subject: Re: [users@httpd] Question on permissions --Boundary_(ID_Jq4BjQcyIDHqByakboDyVA) Content-type: text/plain; charset=UTF-8 Content-transfer-encoding: 7BIT ... to see what exactly apache sees? Richard Geddes wrote: > U, > > Thanks... restarting or reloading seemed to apply the changes made to > /etc/group file. > > Is there a way to dump to screen the apache "environment stuff" to > what exactly apache sees? I looked at the man pages for apache2 and > apache2ctl searching for 'environment' ... no matches. > > R > > Udo Rader wrote: >> On Tue, 2008-02-26 at 11:08 -0500, Richard Geddes wrote: >> >>> Thanks for the response. >>> >>> I set up a directory under the main DocumentRoot called test >>> >>> drwxr-xr-x 2 rgeddes rgeddes 80 2008-02-18 15:18 test >>> >>> and it appeared in a directory listing in the webpage of my main >>> DocumentRoot. >>> >>> Changed permissions as follows: >>> >>> drwxr-x--- 2 rgeddes rgeddes 80 2008-02-18 15:18 test >>> >>> and test disappears from the webpage (this makes sense) >>> >>> changed group as follows: >>> >>> drwxr-x--- 2 rgeddes www-data 80 2008-02-18 15:18 test >>> >>> and test appears in the webpage (this makes sense) as the servers are >>> running as www-data. >>> >>> Now if I change the group back to: >>> >>> drwxr-x--- 2 rgeddes rgeddes 80 2008-02-18 15:18 test >>> >>> and I add www-data to the rgeddes group in /etc/group, the directory >>> fails to show up. This does not make sense to me as www-data is part >>> of the rgeddes group and rgeddes has r-x permissions. >>> >>> Is there a reason why www-data is not being granted rgeddes group >>> permissions? >>> >> >> restart Apache. Apache, like any other UNIX process "rembers" some basic >> "environmental" stuff, like the (secondary) group membership(s) of the >> user it runs under. >> >> Restarting Apache makes it "refetch" this kind data. >> >> --Boundary_(ID_Jq4BjQcyIDHqByakboDyVA) Content-type: text/html; charset=UTF-8 Content-transfer-encoding: 8BIT ... to see what exactly apache sees?

Richard Geddes wrote:
U,

Thanks... restarting or reloading seemed to apply the changes made to /etc/group file. 

Is there a way to dump to screen the apache "environment stuff" to what exactly apache sees?  I looked at the man pages for apache2 and apache2ctl searching for 'environment' ... no matches.

R

Udo Rader wrote: 
On Tue, 2008-02-26 at 11:08 -0500, Richard Geddes wrote:
  
Thanks for the response.  

I set up a directory under the main DocumentRoot called test 

drwxr-xr-x 2 rgeddes rgeddes  80 2008-02-18 15:18 test

and it appeared in a directory listing in the webpage of my main
DocumentRoot.

Changed permissions as follows:

drwxr-x--- 2 rgeddes rgeddes  80 2008-02-18 15:18 test

and test disappears from the webpage (this makes sense)

changed group as follows:

drwxr-x--- 2 rgeddes www-data  80 2008-02-18 15:18 test

and test appears in the webpage (this makes sense) as the servers are
running as www-data.

Now if I change the group back to:

drwxr-x--- 2 rgeddes rgeddes  80 2008-02-18 15:18 test

and I add www-data to the rgeddes group in /etc/group, the directory
fails to show up.  This does not make sense to me as www-data is part
of the rgeddes group and rgeddes has r-x permissions.

Is there a reason why www-data is not being granted rgeddes group
permissions?
    

restart Apache. Apache, like any other UNIX process "rembers" some basic
"environmental" stuff, like the (secondary) group membership(s) of the
user it runs under.

Restarting Apache makes it "refetch" this kind data.
--Boundary_(ID_Jq4BjQcyIDHqByakboDyVA)--