|
2006-12-17, 08:08 AM | #1 |
Solipsists of the world unite
Join Date: Oct 2003
Location: xxx axis
Posts: 639
|
Linkadmin - suexec - 777 problem
Last week I had some security problems on my server which have now largely been addressed, but at a cost - I can't run Linkadmin (Usefulscripts).
Initially it wouldn't load at all - I kept getting a 500 Internal Server Error but I got round that by disabling suexec (whoever she is) Now I can load the the script and I can do certain things, but I can't review sites - I get this message "Reviewing is not possible because the following files are not writable:" and it gives me a list of the files, all of which are in cgi-bin. However I'm unable to change the permissions for these files and for certain directories - some of which need to be 777 - I get "access denied". My hosts now tell me that 777 directories are a huge security risk and they strongly advise against using them. They also recommend that suexec be re-enabled. Well, that may well be the best solution security-wise, but without Linkadmin I haven't got a site! I'd be grateful for any suggestions. <edit> I'm thinking that I might do better to cut my ties with linkadmin and switch to another script - one that's properly supported would be nice! Any suggestions, bearing in mind that I've got over 10k links to convert/transfer?</edit> Thanks Last edited by eman; 2006-12-17 at 08:51 AM.. |
2006-12-17, 08:53 AM | #2 |
i fucking told i type to fucking fast wtf
|
You have a pm
__________________
<a href="http://www.greenguysboard.com/onthebench/">Join Me For On The Bench </a> |
2006-12-17, 10:30 AM | #3 |
A woman is like beer. They look good, they smell good, and you'd step over your own mother just to get one!
|
suexec cant run on 777 you need to run on 755, its a known issue with all scripts.
|
2006-12-17, 12:43 PM | #4 |
Solipsists of the world unite
Join Date: Oct 2003
Location: xxx axis
Posts: 639
|
I think everything's working Ok now - many thanks to MrMaryLou
If you get a problem with submissions please reply to this thread or send me an email. Thanks |
2006-12-17, 12:44 PM | #5 | |
The only guys who wear Hawaiian shirts are gay guys and big fat party animals
|
It's always nice to avoid having any directories chmod 777, but sometimes necesary.
On the other hand, there is never any reason at all to EVER use SuExec on a dedicated server. Doing so only creates huge security problems. Whoever gave you that advice should either be fired for complete incompetence or enrolled in a system administration class today. The only thing SuExec can do that is good is to protect you against other webmasters on a shared server. It does so at the cost of making you much more vulnerable to outside attackers. What SuExec does is give any visitor to your site complete permissions to change or delete any of your files or directories. On a dedicated server it's exactly the same thing as chmod()ing everything 777. Quote:
Any permissions changes would ned to be done by root, but if they are already owned by "nobody" it may not actually be those files that need to be chmod. IT may be one of the directroies they are in. The directories containing them should be chmod 755, or in rare cases 777. If a directory is 666 or 644 or something you can't access files in it. |
|
2006-12-17, 01:16 PM | #6 | |
Solipsists of the world unite
Join Date: Oct 2003
Location: xxx axis
Posts: 639
|
Quote:
I'm addressing this issue with my hosts now. I'll let you know what they say |
|
Thread Tools | Search this Thread |
Display Modes | Rate This Thread |
|
|