Community Forums
Connect with us on LinkedIn
Community Notice
php_error_log default permission with php cgi
  
+ Reply to Thread
Results 1 to 2 of 2
  1. 10-29-2009 07:58 AM #1
    bluepine
    bluepine is offline
    Member
    Join Date
    Dec 2001
    Posts
    32

    Default php_error_log default permission with php cgi

    Hello,
    I noticed today that on my servers the php_error_log each user has in his document root is readable by everybody. Now I fixed it manually by setting every file to 600 but still it would be better if the file itself was created by default with those permission.

    Stefano
    Reply With Quote Reply With Quote
  2. 10-29-2009 08:41 PM #2
    cPanelDon
    cPanelDon is offline
    cPanel Quality Assurance Analyst cPanelDon's Avatar
    Join Date
    Nov 2008
    Location
    Houston, Texas, U.S.A.
    Posts
    2,554
    cPanel/Enkompass Access Level

    DataCenter Provider
    Send a message via ICQ to cPanelDon Send a message via AIM to cPanelDon Send a message via MSN to cPanelDon Send a message via Yahoo to cPanelDon Send a message via Skype™ to cPanelDon

    Lightbulb

    While the error_log files may have read permission, by default they should not be accessible through the web sites they are located within. Public access is restricted by default through specific entries in the Apache configuration (httpd.conf) file; these should be included already and no additional steps may be necessary.

    For reference, here are the two specific entries I am referring to:
    Code:
    <Files ~ "^error_log$">
    Order allow,deny
    Deny from all
    Satisfy All
</Files>

<FilesMatch "^\.ht">
    Order allow,deny
    Deny from all
</FilesMatch>
    cPResources: Submit a Support Request - Submit a Bug Report - Review existing Tickets-- Donald cPanelDon Holl - Analyst, cPanel Quality Assurance
    Reply With Quote Reply With Quote
«   Limiting bandwidth per IP | possible security issues on shared hosting. »     
Similar Threads & Tags
Similar threads

  1. suPHP requires PHP w/ CGI or PHP as CGI?
    By fkatzenb in forum Optimization
    Replies: 5
    Last Post: 01-01-2010, 05:47 AM
  2. suPHP requires PHP w/ CGI or PHP as CGI?
    By fkatzenb in forum cPanel and WHM Discussions
    Replies: 2
    Last Post: 12-31-2009, 05:47 PM
  3. Default Folder Permission
    By Fjeddy in forum cPanel and WHM Discussions
    Replies: 2
    Last Post: 09-18-2008, 02:23 PM
  4. make: *** [sapi/cgi/php-cgi] Error 1 on apache update
    By quicklyweb in forum cPanel and WHM Discussions
    Replies: 4
    Last Post: 09-27-2007, 09:32 AM
  5. You don't have permission to access /cgi-bin/cgiemail on this server
    By J.C in forum cPanel and WHM Discussions
    Replies: 2
    Last Post: 12-07-2005, 09:16 AM
Linkedin       Facebook       Twitter       RSS       Flickr       YouTube