Freelancers Network
 
skill list top cap
Homepage
Join the Freelancer's Network
Update your details
Find a freelancer
Post a project
Find a project
Projects Archive
Post a job
Find a job
Jobs Archive
See Dan's Pages
See Andy's Pages
Link to this site
Resources
Join/Leave Forum
Forum Messages
+Additions+ Adverts
Advertising
Contact Us
Subscribe to our newsletter - enter your email address and hit return
Freelancers.net is owned and operated by Andy Stowell and Dan Winchester
skill list end cap
guru web hostcom

Find me again on Freelancers.net

RE: FN-FORUM PHP *nix file permissions

date posted 22nd January 2001 21:57

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

PHP scripts will run as the web server owner. This is usually nobody,
and seems to be the case for yourself.

Although I dont code in PHP why not try storing all the files that
have to be downloaded below the web root ? (as that's what I do in my
Perl scripts)
- --
Jason Duke || Tel +44(0)7050802831
Founder || Fax +44(0)7050802832
One Eye Group || Email [EMAIL REMOVED]

Looking Forward With Dedicated Vision


- -----Original Message-----
From: [EMAIL REMOVED]
[EMAIL REMOVED] Behalf Of Mark Williams
Sent: 22 January 2001 21:30
To: [EMAIL REMOVED]
Subject: FN-FORUM PHP *nix file permissions



Doh, I don't know if this email was actually sent to the list
earlier..
but I forgot that I was not yet subscribed under my new email, so I
haven't recieved anything. Anyway, here goes again.. If anyone
already
replied, could you resend your replies, perhaps off-list so that we
don't annoy too many people..

I have a set of downloadable files on a host that I wish to offer to
certain people for download. However, I want to protect these files
so
that only those users who are registered can download the files, and
also so that only administrators can upload files. I plan to do this
by
having a PHP script read in these files and then echo them through to
the user, only after first verifying that he is a legitimate user.

My problem is that, after protecting the directory in which the files
are stored, although the remote web browser will not have access to
it,
neither will any PHP script. It appears that the PHP scripts run as
'nobody', even if they are owned by the user who also owns the
protected

directory (the directory has all permissions turned on for the owner,
but off for other users).

I don't seem to be able to figure any way around this. I can't see
anything in the php.ini file that could change anything. Can anybody
help?

Mark

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use

iQA/AwUBOmysCJ9nP977T15sEQKhMQCgqTptJOsjtZMaKLG1rxEqMJ5SDt0AnRcE
GnMjKs1RQeRsl8tPSEdcYIPw
=xfEt
-----END PGP SIGNATURE-----

Messages by Day
January 31st 2001
January 30th 2001
January 29th 2001
January 28th 2001
January 27th 2001
January 26th 2001
January 25th 2001
January 24th 2001
January 23rd 2001
January 22nd 2001
January 21st 2001
January 20th 2001
January 19th 2001
January 18th 2001
January 17th 2001
January 16th 2001
January 15th 2001
January 14th 2001
January 13th 2001
January 12th 2001
January 11th 2001
January 10th 2001
January 9th 2001
January 8th 2001
January 7th 2001
January 6th 2001
January 5th 2001
January 4th 2001
January 3rd 2001
January 2nd 2001
January 1st 2001


Messages by Month
December 2001
November 2001
October 2001
September 2001
August 2001
July 2001
June 2001
May 2001
April 2001
March 2001
February 2001
January 2001


Messages by Year
2008
2007
2006
2005
2004
2003
2002
2001
2000