[Big Changes] PHPsuexec to be implemented on new servers - Page 3

**Kayla** · March 9th, 2006, 12:35 AM

Thank you very much.

I just updated the first post with a schedule of updates for our first round of servers.

**Kayla** · March 13th, 2006, 7:38 AM

We have added a forum to discuss issues/questions/ideas/problems regarding PHPsuexec.

http://www.surmunity.com/phpsuexec/

2BitWannabe · March 16th, 2006, 3:24 AM

Hi,
I think is is a brilliant idea as Web Developer Security is key, To be fair this may be more time consuming for the techs but in the long run this will save time for everyone

Ricardo · March 23rd, 2006, 6:37 PM

Quote:

Originally Posted by Kayla

Folders set to 777 will just need to be set to 755 instead.

Rules that apply to .cgi and .pl files apply to php files also. The maximum permissions permitted on directories and PHP files is 755. Failing to have permissions set to a maximum of 755 on PHP files and their installation paths, will result in a 500 internal server error, when attempting to execute them.

Remember that all of this info is provided in the announcement itself above.

Sorry if I misunderstood it, but:

1- does it means that scripts offered by surpass at Cpanel like some image galleries and CMS will stop working??? Some of them requires 777 on some folders. Will surpass remove those scripts from Cpanel to avoid customers installing them and being frustrated when they realise that it do not works at surpass?

2- Will we need to hunt through folders and folders to find who is set to 777 and change it to 755??

Or it will be set automatically?

Thanks.
Ricardo

**Kayla** · March 23rd, 2006, 7:15 PM

Hi Ricardo,

Our newest servers that have always had phpsuexec enabled from the beginning are running so wonderfully, that we had to start implementing this on our older servers. There was really no question about it in our minds.

It cannot be perfectly easy, although we wish it could be. This is a time when we wish there was an easy button.. most definitely.

Some scripts will need modifications in order to work correctly. Such as, some folders owned by nobody will need to be chowned by support, to your username instead. Sometimes this does not happen automatically as it should. So this is one common issue.. it happens often with the program Gallery.

If folders such as /images or /uploads have 777, then yes, you'll need to change them. There are not that many folders that would have such permissions. In a case if your client has maybe, all of his folders setup with those permissions.. well that shouldn't have been done in the first place.

That happens often if an installation is not working correctly and you've exhausted all methods to get it to work. Understandable.

However, the way I see it is- usually any given site has only a few applications installed that have such issues. It would only take a few minutes to change the permissions and in many cases you may not even have to make any changes. It just depends on what is installed.

**cowboy** · March 23rd, 2006, 7:23 PM

When installing new scripts, in which you are directed to give your folder or file 777 permissions, they are in essence just be stating to make them writable. With phpsuexec active the script will see the folder by default is writable, by the owner installing the script, and not even know it is not 777.

Ricardo · March 23rd, 2006, 8:18 PM

Hi Kayla,

Thank you for your support.

What is realy getting me worrried is about the CMS Joomla and Mambo. I´m implementing my own site at Joomla and some clients already uses joomla.

I would appreciate so much if you (or someone) could tell us if these CMS will be working fine when phpsuexec is implemented. I´m a newbie in joomla, but saw that some components and editors uses 777 on some folders (ie. image manager upload folder).

Thanks again,

Ricardo

**Kayla** · March 23rd, 2006, 10:36 PM

Quote:

Originally Posted by cowboy

When installing new scripts, in which you are directed to give your folder or file 777 permissions, they are in essence just stating to make them writable.

That's an excellent way of explaining it.

This means if you are on a server with phpsuexec and you want to install a new application- if the instructions direct you to make a folder 777, this does not mean you are unable to use the application. You can still use it but will need to set the permissions as 644.

We have not yet heard of any problems with Joomla and phpsuexec is on about 40 servers right now.

**pizzicar** · March 23rd, 2006, 11:46 PM

Ricardo, I am running Joomla with PHPsuexec and all folders are 755 - Joomla is very happy

I had a couple of 777 folders pre-phpsuexec and just moded them to 755 after the install - no issues at all. (in fact, I'm on a VPS and asked for PHPsuexec to be installed - it really is a better way to go in the long run)

March 9th, 2006, 12:35 AM	#19 (permalink)
Kayla Surpass Staff Joined in May 2003 Lives in Orlando 23,926 posts Gave thanks: 904 Thanked 768 times	Thank you very much. I just updated the first post with a schedule of updates for our first round of servers. __________________ Have you ever want to draw a windmill, and after that animate it? No problem!

March 13th, 2006, 7:38 AM	#20 (permalink)
Kayla Surpass Staff Joined in May 2003 Lives in Orlando 23,926 posts Gave thanks: 904 Thanked 768 times	We have added a forum to discuss issues/questions/ideas/problems regarding PHPsuexec. http://www.surmunity.com/phpsuexec/ __________________ Have you ever want to draw a windmill, and after that animate it? No problem!

March 16th, 2006, 3:24 AM	#21 (permalink)
2BitWannabe Registered User Seasoned Poster Joined in Feb 2006 Lives in In Front of My Computer, in the UK Hosted on SH92/Pass59 32 posts Gave thanks: 2 Thanked 0 times	Hi, I think is is a brilliant idea as Web Developer Security is key, To be fair this may be more time consuming for the techs but in the long run this will save time for everyone __________________ Dean (2BitWannabe Admin) Site: http://www.2bitwannabe.com Server: SH92(72.29.92.190) Site: http://www.twobitwannabe.org Server: Pass59(72.29.89.118) C\|EH (Certified Ethical Hacker)

March 23rd, 2006, 7:15 PM	#23 (permalink)
Kayla Surpass Staff Joined in May 2003 Lives in Orlando 23,926 posts Gave thanks: 904 Thanked 768 times	Hi Ricardo, Our newest servers that have always had phpsuexec enabled from the beginning are running so wonderfully, that we had to start implementing this on our older servers. There was really no question about it in our minds. It cannot be perfectly easy, although we wish it could be. This is a time when we wish there was an easy button.. most definitely. Some scripts will need modifications in order to work correctly. Such as, some folders owned by nobody will need to be chowned by support, to your username instead. Sometimes this does not happen automatically as it should. So this is one common issue.. it happens often with the program Gallery. If folders such as /images or /uploads have 777, then yes, you'll need to change them. There are not that many folders that would have such permissions. In a case if your client has maybe, all of his folders setup with those permissions.. well that shouldn't have been done in the first place. That happens often if an installation is not working correctly and you've exhausted all methods to get it to work. Understandable. However, the way I see it is- usually any given site has only a few applications installed that have such issues. It would only take a few minutes to change the permissions and in many cases you may not even have to make any changes. It just depends on what is installed. __________________ Have you ever want to draw a windmill, and after that animate it? No problem!

March 23rd, 2006, 7:23 PM	#24 (permalink)
cowboy Surpass Fan Excelling Contributor Joined in Nov 2005 Lives in Colorado Hosted on DEDI 924 posts Gave thanks: 2 Thanked 91 times	When installing new scripts, in which you are directed to give your folder or file 777 permissions, they are in essence just be stating to make them writable. With phpsuexec active the script will see the folder by default is writable, by the owner installing the script, and not even know it is not 777. __________________ Where would you be if you were at the highest court in the land (US)?

March 23rd, 2006, 8:18 PM	#25 (permalink)
Ricardo Registered User Seasoned Poster Joined in May 2003 Lives in Brazil Hosted on D29 / Acela 33 posts Gave thanks: 0 Thanked 0 times	Hi Kayla, Thank you for your support. What is realy getting me worrried is about the CMS Joomla and Mambo. I´m implementing my own site at Joomla and some clients already uses joomla. I would appreciate so much if you (or someone) could tell us if these CMS will be working fine when phpsuexec is implemented. I´m a newbie in joomla, but saw that some components and editors uses 777 on some folders (ie. image manager upload folder). Thanks again, Ricardo __________________ Brazilian Nascar League On line Nascar Races www.nascarbrasil.com at acela server www.alphatraders.com.br (reseller at D29 server)

March 23rd, 2006, 11:46 PM	#27 (permalink)
pizzicar Surpass Fan On a golden path... Joined in Feb 2006 Lives in Arizona 340 posts Gave thanks: 3 Thanked 16 times	Ricardo, I am running Joomla with PHPsuexec and all folders are 755 - Joomla is very happy I had a couple of 777 folders pre-phpsuexec and just moded them to 755 after the install - no issues at all. (in fact, I'm on a VPS and asked for PHPsuexec to be installed - it really is a better way to go in the long run) __________________ "Argue for your limitations, and sure enough, they are yours"

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Rate This Thread
Rate This Thread: