Project

General

Profile

Actions
Copy link

Bug #979

closed

fcgi+execwrap conflicts with index-file.names

Added by zikzik about 18 years ago. Updated over 16 years ago.

Status:
Invalid
Priority:
Normal
Category:
core
Target version:
-
ASK QUESTIONS IN Forums:

Description

I run php-fcgi with execwrap (for proper isolation).
Each vhost runs php scripts under own UID/GID.
For security, php scripts have 0640 modes, thus they are unreadable by lighty itself (I use check-local=>disable in fcgi config.).
The problem is, index.php files must be 0644 or we get 403.
(non-index php files work correctly with 0640)

This is because mod_indexfile uses stat_cache_get_entry() which checks for file readability and returns EACCESS in this case, and mod_indexfile immediately translates this to 403.
This might be a shortcut, but if we have fcgi and suexec this shortcut leads to missing functionality.

Files

lighttpd-1.3.14-indexfile-mode-fcgi.diff (721 Bytes) lighttpd-1.3.14-indexfile-mode-fcgi.diff patch for mod_indexfile to handle unreadable index.php files zikzik, 2007-01-16 01:52
Actions
Copy link
 #1

Updated by stbuehler almost 17 years ago

  • Status changed from New to Fixed
  • Resolution set to invalid

mod-indexfile is made for choosing between different index filenames. What you want is just a simple rewrite rule; append 'index.php' at every path ending in '/'.

Actions
Copy link
 #2

Updated by stbuehler over 16 years ago

  • Status changed from Fixed to Invalid
Actions
Copy link

Also available in: Atom