phranque
msg:4547403 | 12:12 pm on Feb 21, 2013 (gmt 0) |
it depends on the owner/group of the file and permissions settings for the file as well as the user running the apache process and the groups to which the apache process user is assigned.
the process running the server must have read access either as the owner outright or by being in the same group as the owner or by setting read privileges for the file to "the world".
if your apache process is running as 'root', that would explain things but you should fix that - very insecure/unsafe!
|
mike2010
msg:4551510 | 8:51 pm on Mar 5, 2013 (gmt 0) |
I'm generally talking about files under a domain name and in /httpdocs/ ...and with general 644 permissions throughout.
As long as it's not a dynamically controlled file (by php , mysql or other) ....and as long as it's just a basic html file.... It shouldn't matter whether the file is owned by the FTP owner or owned by Root.. ?
that's basically what I mean. In my 10 years of doing this, i've never had a permission denial error (in any browser) when trying to view such file...as long as it's a basic html file.
If it's a forum or other type of database file in which apache/php needs access to to automatically change....I could understand in those instances.. But if it's an ordinary .html file i'm trying to change using a FTP client...whether I change it in Root or with the separate FTP owner permissions.... These files shouldn't ever have a problem displaying to ordinary visitors, regardless of their browser. Correct ?
|
phranque
msg:4551554 | 12:04 am on Mar 6, 2013 (gmt 0) |
if you give the world read access, that means all processes can read that file including the web server.
|
mike2010
msg:4552333 | 10:53 pm on Mar 7, 2013 (gmt 0) |
short and sweet enough. thx
(knew I was right)
|
|
