FreeBSD Port: www/apache24

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

FreeBSD Port: www/apache24

Jonathan Gilpin
Dear Sir,

I have am using the FreeBSD Apache 2.4 with Suexec Port to run PHP.

I have discovered that files uploaded in PHP using basic code are ending up owned by the group ‘wheel’ rather than the group specified in

SuexecUserGroup "#3008" "#3010"

E.g. I end up with:

-rw-r--r--   1 marsecreview  wheel         209166 Oct 18 13:12 Screenshot 2019-10-17 at 18.02.49.png

# id marsecreview
uid=3008(marsecreview) gid=3010(marsecreview) groups=3010(marsecreview)

This is a standard installation so Apache runs as www on FreeBSD:

id www
uid=80(www) gid=80(www) groups=80(www)

So I really do not understand where the ‘wheel’ group is coming into this..

entry from /etc/group is:

wheel:*:0:root,jonathan


Is this a bug?

Kind Regards,

Jonathan Gilpin




_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"
Reply | Threaded
Open this post in threaded view
|

Re: FreeBSD Port: www/apache24

Jonathan Gilpin
Sorry I forgot to include this:

 # suexec -V
 -D AP_DOC_ROOT="/home"
 -D AP_GID_MIN=1000
 -D AP_HTTPD_USER="www"
 -D AP_LOG_EXEC="/var/log/httpd-suexec.log"
 -D AP_SAFE_PATH="/usr/local/bin:/usr/bin:/bin"
 -D AP_UID_MIN=1000
 -D AP_USERDIR_SUFFIX="public_html"


 # httpd -V
Server version: Apache/2.4.41 (FreeBSD)
Server built:   unknown
Server's Module Magic Number: 20120211:88
Server loaded:  APR 1.7.0, APR-UTIL 1.6.1
Compiled using: APR 1.7.0, APR-UTIL 1.6.1
Architecture:   64-bit
Server MPM:     prefork
  threaded:     no
    forked:     yes (variable process count)
Server compiled with....
 -D APR_HAS_SENDFILE
 -D APR_HAS_MMAP
 -D APR_HAVE_IPV6 (IPv4-mapped addresses disabled)
 -D APR_USE_FLOCK_SERIALIZE
 -D APR_USE_PTHREAD_SERIALIZE
 -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
 -D APR_HAS_OTHER_CHILD
 -D AP_HAVE_RELIABLE_PIPED_LOGS
 -D DYNAMIC_MODULE_LIMIT=256
 -D HTTPD_ROOT="/usr/local"
 -D SUEXEC_BIN="/usr/local/sbin/suexec"
 -D DEFAULT_PIDLOG="/var/run/httpd.pid"
 -D DEFAULT_SCOREBOARD="/var/run/apache_runtime_status"
 -D DEFAULT_ERRORLOG="/var/log/httpd-error.log"
 -D AP_TYPES_CONFIG_FILE="etc/apache24/mime.types"
 -D SERVER_CONFIG_FILE="etc/apache24/httpd.conf"




> On 18 Oct 2019, at 13:38, Jonathan Gilpin <[hidden email]> wrote:
>
> Dear Sir,
>
> I have am using the FreeBSD Apache 2.4 with Suexec Port to run PHP.
>
> I have discovered that files uploaded in PHP using basic code are ending up owned by the group ‘wheel’ rather than the group specified in
>
> SuexecUserGroup "#3008" "#3010"
>
> E.g. I end up with:
>
> -rw-r--r--   1 marsecreview  wheel         209166 Oct 18 13:12 Screenshot 2019-10-17 at 18.02.49.png
>
> # id marsecreview
> uid=3008(marsecreview) gid=3010(marsecreview) groups=3010(marsecreview)
>
> This is a standard installation so Apache runs as www on FreeBSD:
>
> id www
> uid=80(www) gid=80(www) groups=80(www)
>
> So I really do not understand where the ‘wheel’ group is coming into this..
>
> entry from /etc/group is:
>
> wheel:*:0:root,jonathan
>
>
> Is this a bug?
>
> Kind Regards,
>
> Jonathan Gilpin
>
>
>
>

_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"
Reply | Threaded
Open this post in threaded view
|

Re: FreeBSD Port: www/apache24

Miroslav Lachman
In reply to this post by Jonathan Gilpin
Jonathan Gilpin wrote on 2019/10/18 14:38:

> -rw-r--r--   1 marsecreview  wheel         209166 Oct 18 13:12 Screenshot 2019-10-17 at 18.02.49.png
>
> # id marsecreview
> uid=3008(marsecreview) gid=3010(marsecreview) groups=3010(marsecreview)
>
> This is a standard installation so Apache runs as www on FreeBSD:
>
> id www
> uid=80(www) gid=80(www) groups=80(www)
>
> So I really do not understand where the ‘wheel’ group is coming into this..
>
> entry from /etc/group is:
>
> wheel:*:0:root,jonathan

Group on files is inherited from parent folder. It is how it works on
FreeBSD by default.
So if parent folder of your file "Screenshot 2019-10-17 at 18.02.49.png"
has group "wheel" then the file will have it too.

What is owner and group of the folder in question? (ls -ld your_folder)

Miroslav Lachman
_______________________________________________
[hidden email] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-apache
To unsubscribe, send any mail to "[hidden email]"