big problem with owners in scripts joomla

richenou

Well-Known Member
PartnerNOC
Feb 17, 2004
86
0
156
hi

here s my problem

my users install scripts like dotclear or joomla

but they get a problem with the owner of files

drwxr-xr-x 3 nobody nobody 4096 Oct 11 07:46 dotsound/
drwxrwxrwx 5 nobody nobody 4096 Dec 14 10:23 gallery/
drwxrwxrwx 2 nobody nobody 4096 Oct 11 07:28 mysql/
drwxrwxrwx 5 nobody nobody 4096 Dec 13 22:16 weather/

it must be like this:

drwxr-xr-x 3 famill famill 4096 Oct 11 07:46 dotsound/
drwxrwxrwx 5 famill famill 4096 Dec 14 10:23 gallery/
drwxrwxrwx 2 famill famill 4096 Oct 11 07:28 mysql/
drwxrwxrwx 5 famill famill 4096 Dec 13 22:16 weather/

they havent ssh access on this server... :(


when they install the script apache change the owner:group of their files and directories..and they cant remove or edit it...

how to do for Apache doesnt change this?

thanks a lot
 

neutro

Well-Known Member
Apr 11, 2004
70
1
158
chown the files back to the owner. Then they will have the ability to delete or rename the files/folder
 

darren.nolan

Well-Known Member
Oct 4, 2007
257
0
66
A better solution would be to user suphp - which makes PHP run as their username (for their sites) rather than the default "nobody".

This means when Joomla creates files, or a user uploads a component through Joomla, instead of the files being owned by nobody - it will be owned as expected their username.
 

richenou

Well-Known Member
PartnerNOC
Feb 17, 2004
86
0
156
yes of course neutro but I have 10 000 users :)
I can't change the owner each time because I have not time for this...

suphp is very complicated because there are a lot a problem with .htacces of my users...they want to be able to modify it....etc


thanks anyway
 

darren.nolan

Well-Known Member
Oct 4, 2007
257
0
66
suphp is very complicated because there are a lot a problem with .htacces of my users...they want to be able to modify it....etc
And that's a problem with suphp how? I don't follow. :confused:

Edit: You could write a script to chown everyone's directories back to them once a night or something similar
Edit 2: I do believe that in Joomla settings, you can ask scripts to chown files for you
 
Last edited:

cPanelKenneth

cPanel Development
Staff member
Apr 7, 2006
4,607
79
458
cPanel Access Level
Root Administrator
And that's a problem with suphp how? I don't follow. :confused:

Edit: You could write a script to chown everyone's directories back to them once a night or something similar
Edit 2: I do believe that in Joomla settings, you can ask scripts to chown files for you
suPHP uses PHP via CGI. Thus special settings in .htaccess for the PHP Application are worthless.
 

verdon

Well-Known Member
Nov 1, 2003
919
12
168
Northern Ontario, Canada
cPanel Access Level
Root Administrator
suPHP uses PHP via CGI. Thus special settings in .htaccess for the PHP Application are worthless.
Yes, but they can be accomplished with a local php.ini file.. unless I miss the point?

For instance,

In .htaccess, I have
<Files ".ht*">
deny from all
</Files>
<Files "*.ini">
deny from all
</Files>
suPHP_ConfigPath /home/user/public_html

In php.ini
upload_max_filesize = 5M
session.use_trans_sid = 0
 

cPanelKenneth

cPanel Development
Staff member
Apr 7, 2006
4,607
79
458
cPanel Access Level
Root Administrator
Yes, but they can be accomplished with a local php.ini file.. unless I miss the point?

For instance,

In .htaccess, I have
<Files ".ht*">
deny from all
</Files>
<Files "*.ini">
deny from all
</Files>
suPHP_ConfigPath /home/user/public_html

In php.ini
upload_max_filesize = 5M
session.use_trans_sid = 0
No, we are just thinking of different points. The special settings in .htaccess would need migrated to a local php.ini file. Joomla wouldn't know how to set those in the php.ini file, thus the user would lose the 'nice' interface to configuring those settings.

What those settings are, I don't know as I don't use Joomla.
 

cPanelDavidG

Technical Product Specialist
Nov 29, 2006
11,212
13
313
Houston, TX
cPanel Access Level
Root Administrator
No, we are just thinking of different points. The special settings in .htaccess would need migrated to a local php.ini file. Joomla wouldn't know how to set those in the php.ini file, thus the user would lose the 'nice' interface to configuring those settings.

What those settings are, I don't know as I don't use Joomla.
Joomla allows you to control php.ini settings within their interface. The main purpose of this functionality appears to be ensuring register_globals is disabled. Joomla likes to harden the directories in which it operates against anything that could assist hackers.

I've never tried disabling this particular functionality, but I believe if register_globals is disabled on the server, Joomla should continue functioning without error so long as you don't try to edit php.ini settings via Joomla.

No guarantees, just speaking from my experience of using Joomla on cPanel/WHM systems.
 

darren.nolan

Well-Known Member
Oct 4, 2007
257
0
66
There is still an option in recent versions of Joomla that try to chown any file/directory it creates to the appropriate username. Does this not work?
 

darren.nolan

Well-Known Member
Oct 4, 2007
257
0
66
I'm under the impression that the latest version of Joomla now uses FTP (as well as all it's previous methods) to create it's files, removing the problem of Nobody files/directories left on your server.

Check it out. :)
 

rbjb

Member
Jan 4, 2003
16
0
151
We solved this problem by manually installing PHPsuexec. Suexec was turned on. But, PHPsuexec solved the problem.

Ray