DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 5th September 2011
BinarySpike BinarySpike is offline
New User
 
Join Date: Aug 2011
Posts: 7
Default Squid and Apache user permissions

Okay, so I'm running squid as a cache and content filter. However whenever my script--ran by squid, whoami'd as _squid--tries to place anything in /var/www/htdocs/images/ it get's a "permission denied"

I've been following this guide to get me started:
https://help.ubuntu.com/community/Upside-Down-TernetHowTo


I've edited the script and all the commands to fit my directory layout. I think I'm messed up at this step though:
Code:
sudo mkdir /var/www/images
sudo chown www-data:www-data /var/www/images
sudo chmod 755 /var/www/images
sudo usermod -aG proxy www-data
Which I've done as

Code:
mkdir /var/www/htdocs/images
chown www:www /var/www/htdocs/images
chmod 755 /var/www/htdocs/images
usermod -G _squid www
However, the problem is two-fold. If I chown htdocs/images to _squid:_squid then the python/squid script can place files (verified) in htdocs/images but apache gets I get a "403 Forbidden".
Code:
usermod -G www _squid
To be honest I'm completely lost here
Code:
# ls -lR /var/www/htdocs/
total 4
drwxr-xr-x  2 www  www  512 Sep  5 12:53 images

/var/www/htdocs/images:
total 12
-rw-r-----  1 _squid  _squid  2222 Sep  5 05:02 test.gif


# cat /etc/group | grep _squid
www:*:67:_squid
_squid:*:515:www
Honestly it looks me to me like www and _squid should have access both ways.
Reply With Quote
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
uscanner0 permissions shep OpenBSD Installation and Upgrading 4 31st August 2010 05:27 AM
auditing apache user Dr_Death_UAE FreeBSD Security 0 8th February 2010 11:06 AM
squid 3.0 ccc FreeBSD Ports and Packages 4 16th February 2009 12:05 PM
permissions and FTP/HTTP Yuka FreeBSD General 0 20th October 2008 10:32 PM
Squid -> Privoxy -> Tor Peter_APIIT OpenBSD Security 3 17th June 2008 08:06 AM


All times are GMT. The time now is 06:45 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick