suPHP info

To explain in why suPHP requires the changes belowto the file permissions, please note that suPHP runs scripts with the permissions of their owners. Normally, regular PHP executes scripts under the permissions of the system user running the web server, which means that your script runs as 'nobody',with different permissions than your own user account and makes it very hard to use a PHP script to modify and create files without giving everyone on the server access to your files. This means that on regular PHP you provide write or execute access to group and world for files in your site, which is insecure and allows anyone who knowshow to read, modify, delete, orto take ownership of those files.

Since SuPHP makes your PHP scripts run with the same permissions as your regular user account, you do not need group or world write access or execute access for files. The net effect of this is that scripts running ona site can only modify files on that particularsite, and that files across the serverare safe from malicious code,and suPHP will even prevent files from running that are group or world writable or executable as a security precaution.

666 equals the following:

Code:
Mode User Group World
Read 4 4 4 (all checked)
Write 2 2 2 (all checked)
Execute(none checked)

This makes group and world able to write to the file, a security risk

777 equals the following:

Code:
Mode User Group World
Read 4 4 4 (all checked)
Write 2 2 2 (all checked)
Execute 1 1 1 (all checked)

This makes group and world able to write and execute the file, a very large security risk.

Basically, suPHP is more secure, and preventing scripts from running as 666 or 777 prevents group or world from maliciously writing to the files and hacking your scripts. If this is the case, change them to either 755 or 644 in Cpanel's File Manager (or using your local FTP client).

If you are running a PHP-based script on your site and are receiving a 500 and/or 404 errors on your pages, this may be due to the suPHP security measures, and it is likely you have one or more of the following occurring:

1. You are attempting to access PHP files through the temp-URL http://1.2.3.4/~username. PHP on our servers actually requires a fully qualified domain name. You may wait until your domain has beenpointed and resolves here. You will know when that happens, since you will see a CPanel or Plesk 'Under Construction' page.

2. The permissions on some of the folders or files are 777 or 666. If this is the case, change them to either 755 or 644 in Cpanel's File Manager (or using your local FTP client).

3. The files and/or folders are not owned by you. Certain applications having been run under php as an apache module may have files owned by the apache user of nobody. An indication that you don't own the files would be if you are unable to change their file permissions. To correct this, please contact support provide your username and password with us, and we can have a look at thefilesfor ownership verification (no support charges apply) and provide the location of the folder or files that needto have your ownership.

4. Your .htaccess file has php_values or php_flags in it. This causes a 500 Internal server error when attempting to execute the script.

The php_values and php_flags will need to be removed from your .htaccess file (we suggest making a backup of the .htaccess by copying its contents and saving it on your personal desktop as htaccess.txt). Take the contents removed from .htaccess and place it into a file you create called php.ini. Remember to remove the php_flag and php_value part before the directives as php.ini files do not require those in front of the values.

Also - because php.ini values are not shared across directories, you would need a separate php.ini file in each folder that has .htaccess or that requires the php_values or php_flags. In order to avoid doing this, you could insteadplace a line in the .htaccess file in your public_html folder to have all values in your public_html's php.ini to be shared across all folder. This line would be the following:

suPHP_ConfigPath /home/username/public_htm

  • 1 användare blev hjälpta av detta svar
Hjälpte svaret dig?

Relaterade artiklar

Site is uploaded, but doesn't show up?

First of all, there can be a number of reasons for this symptom, so this is only one...

Site is uploade, but doesn't show up (2)

When you upload a site to a Linux/CPanel server, you need to make sure that the content goes...

Upload Instructions

In order to publish your newly created website, you would need to upload them to the...