You are viewing a plain text version of this content. The canonical link for it is here.
Posted to wiki-changes@httpd.apache.org by Apache Wiki <wi...@apache.org> on 2007/09/25 16:11:00 UTC
[Httpd Wiki] Update of "13PermissionDenied" by megaspaz
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Httpd Wiki" for change notification.
The following page has been changed by megaspaz:
http://wiki.apache.org/httpd/13PermissionDenied
The comment on the change is:
added more specificity to directory permissions.
------------------------------------------------------------------------------
GNU based systems often have a {{{namei}}} program that helps in viewing the permissions of a complete path.
+ Note that the permissions used below for examples assumes that the Apache user is not
+ the owner or group owner of any of the resources. It is also assumed that you, the user/admin, knows and understands the unix permissions/ownership scheme.
+
Make sure that the file to which permission was denied is at least readable by the Apache user (eg {{{-r--r--r--}}} or 444 as a minimum. {{{-rw-r--r--}}} or 644 is more usual).
- Directories and scripts also need to be 'executable' ({{{dr-xr-xr-x}}} or 555. {{{drwxr-xr-x}}} or 755 is more common). This includes '''all''' parent directories of a resource too!
+ The '''!DocumentRoot''' directory and its subdirectories need to have the 'read' and 'executable' bits set ({{{drwxr-x-r-x}}} or 755 is most common).
+
+ Parent directories up to the '''!DocumentRoot''' directory need at least the 'executable' bit set ({{{drwx--x--x}}} or 711 for example).
+
+ These above also pertain to '''Userdir''' (a.k.a. '''public_html''') where you can think of a user's '''public_html''' directory as the '''!DocumentRoot''' for that user.
+
+ Scripts to be executed need to be 'readable' and 'executable' ({{{drwxr-xr-x}}} or 755 being most common).
On Linux, you can use the {{{namei}}} command to return permissions of everything in the path to the target file or directory.