Running ZenCart under PHPsuexec

T313C0mun1s7 · July 25th, 2006, 12:04 AM

I have two questions (but one is a two parter).

1) How do I know if my shared hosting server is setup to run under PHPsuexec, or if/when it will be changed to do so?

2) please respond to this link:
http://www.zen-cart.com/wiki/index.p...t_-_PHP_as_CGI

Thank you in advance.

**Kayla** · July 25th, 2006, 12:09 AM

Hi,

Servers past SH88 all have phpsuexec, so yes.

This means that ZenCart may ask you to set permissions to some folders as 777 but you can only set up to 755. I know that there are copies of ZenCart running fine on phpsuexec enabled servers.

T313C0mun1s7 · July 25th, 2006, 12:21 AM

Thanks Kayla, that was fast.

I have a client that I am setting up 7 Corporate Catalogs for, and they will all be running ZenCart. I enjoy my hosting here and would like to host my clients accounts here as well, but first I am experimenting to see how well it goes.

I have already hit my first wall. I just uploaded everything, and then I bypassed the step where I chmod the files to 777, as they are showing in my FTP Client that everything defaulted to 777 anyhow. That and I can't really change them beyond a 755 anyhow.

For some reason I am unable to get anything but

Quote:

Originally Posted by Webpage

Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator, webmaster

catalog.lds-online-forum.com and inform them of the time the error occurred, and anything you might have done that may have caused the error.
More information about this error may be available in the server error log.

Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.
Apache/1.3.34 Server at catalog.lds-online-forum.com Port 80

This is not the norm. Nornally I would get the install script with a warning if the file permission are not right. Any ideas what might be causing this?

The error log says:

Quote:

Originally Posted by Error Log

[2006-07-25 00:17:07]: error: file is writable by others: (/home/ldsxonl/public_html/catalog/index.php)
[2006-07-25 00:11:12]: error: directory is writable by others: (/home/ldsxonl/public_html/catalog/zc_install)
[2006-07-25 00:09:43]: error: file is writable by others: (/home/ldsxonl/public_html/catalog/index.php)
[Tue Jul 25 00:17:07 2006] [error] [client 71.209.0.187] File does not exist: /home/ldsxonl/public_html/catalog/500.shtml
[Tue Jul 25 00:17:07 2006] [error] [client 71.209.0.187] Premature end of script headers: /home/ldsxonl/public_html/catalog/index.php
[Tue Jul 25 00:11:12 2006] [error] [client 71.209.0.187] File does not exist: /home/ldsxonl/public_html/catalog/500.shtml
[Tue Jul 25 00:11:12 2006] [error] [client 71.209.0.187] Premature end of script headers: /home/ldsxonl/public_html/catalog/zc_install/index.php
[Tue Jul 25 00:09:43 2006] [error] [client 71.209.0.187] File does not exist: /home/ldsxonl/public_html/catalog/404.shtml
[Tue Jul 25 00:09:43 2006] [error] [client 71.209.0.187] File does not exist: /home/ldsxonl/public_html/catalog/favicon.ico
[Tue Jul 25 00:09:43 2006] [error] [client 71.209.0.187] File does not exist: /home/ldsxonl/public_html/catalog/500.shtml
[Tue Jul 25 00:09:43 2006] [error] [client 71.209.0.187] Premature end of script headers: /home/ldsxonl/public_html/catalog/index.php

**cowboy** · July 25th, 2006, 12:36 AM

Quote:

[2006-07-25 00:17:07]: error: file is writable by others: (/home/ldsxonl/public_html/catalog/index.php)
[2006-07-25 00:11:12]: error: directory is writable by others: (/home/ldsxonl/public_html/catalog/zc_install)

The catalog/ directory is either 777 or 757 (writeable by group and/or nobody), the same might be true with zc_install. chmod to 755. The last two didgets cannot be above 5.

T313C0mun1s7 · July 25th, 2006, 3:18 PM

So let me see if I understand this correctly. The way the server is set up does not prevent you from setting the permissions higher that 755, it just won't let the php parse if it is higher?

That is a pain if it is true, because when I upload via FTP everything defaults to 777 and ZenCart is over 1900 files and I don't even know how many directories. I guess this might be a time to contact support and have then run a recursive chmod on my entire public_html directory.

Cowboy to answer your sig - one more than if only I and dead people read hex, 57007

**Skipdawg** · July 25th, 2006, 5:32 PM

phpsuexec IMHO is just a royal pain in the butt! One of the many reasons I went VPS so I had control over that. It is not enabled on my VPS.

Oh and have I stated I hate phpsuexec hehehehe

**Kayla** · July 25th, 2006, 5:33 PM

It's a pain in the butt but if a php shell somehow gets on your server and scammers begin to upload scam and spam happily into your open folders.. even larger pain in the butt. =)

**Skipdawg** · July 25th, 2006, 5:41 PM

Yea that could be a real big pain.
But keeping a close eye on everything 2 to 3 times a day will make that hard too.
As support has discovered when I see something odd they get to know about it.
But then I'm a nut case too. LaughLaughLaugh

**cowboy** · July 25th, 2006, 6:15 PM

Quote:

Originally Posted by T313C0mun1s7

So let me see if I understand this correctly. The way the server is set up does not prevent you from setting the permissions higher that 755, it just won't let the php parse if it is higher?

That is a pain if it is true, because when I upload via FTP everything defaults to 777 and ZenCart is over 1900 files and I don't even know how many directories. I guess this might be a time to contact support and have then run a recursive chmod on my entire public_html directory.

What FTP program are you using? I cannot imagine one that would allow such a security risk. If it has a setting that controls default chmod set it to 755 for folders and 644 for files.

PHP running as CGI (PhpSUexec) will not allow initial creation of group or world write bits, nor, will it allow itself to set either bit after creation.

If you are uploading a tarball and extracting it on the server, it's contents will retain the permissions set at the time of taring.

The security feature of phpSUexec is to allow only the owner of a file to write, so if either group or world has a write bit, the CGI for PHP will halt in its tracks and deliver an error, usually 500. You can add write bits with FTP after file or folder creation, but, phpSUexec will refuse to honor them. That is your protection.

Since CGI needs an execute bit to run a file the apache OPTIONS directive ExecCGI adds an execute bit to all files, making a 644 file in effect 755. (Files pose no problem having a 755 permission.) Folders are not affected by the ExecCGI directive so have to be 755 to start with.

If all of your folders and files are in tact with 777 permissions, you can request support change them for you.

July 25th, 2006, 12:04 AM	#1 (permalink)
T313C0mun1s7 Registered User Seasoned Poster Joined in Mar 2006 Hosted on SH95 (72.29.90.43) 49 posts Gave thanks: 4 Thanked 2 times	Running ZenCart under PHPsuexec I have two questions (but one is a two parter). 1) How do I know if my shared hosting server is setup to run under PHPsuexec, or if/when it will be changed to do so? 2) please respond to this link: http://www.zen-cart.com/wiki/index.p...t_-_PHP_as_CGI Thank you in advance. __________________ T313C0mun1s7 PASS65 (72.29.93.65) - Reseller ========================

July 25th, 2006, 12:09 AM	#2 (permalink)
Kayla Surpass Staff Joined in May 2003 Lives in Orlando 23,934 posts Gave thanks: 904 Thanked 770 times	Hi, Servers past SH88 all have phpsuexec, so yes. This means that ZenCart may ask you to set permissions to some folders as 777 but you can only set up to 755. I know that there are copies of ZenCart running fine on phpsuexec enabled servers. __________________ Have you ever want to draw a windmill, and after that animate it? No problem!

July 25th, 2006, 3:18 PM	#5 (permalink)
T313C0mun1s7 Registered User Seasoned Poster Joined in Mar 2006 Hosted on SH95 (72.29.90.43) 49 posts Gave thanks: 4 Thanked 2 times	So let me see if I understand this correctly. The way the server is set up does not prevent you from setting the permissions higher that 755, it just won't let the php parse if it is higher? That is a pain if it is true, because when I upload via FTP everything defaults to 777 and ZenCart is over 1900 files and I don't even know how many directories. I guess this might be a time to contact support and have then run a recursive chmod on my entire public_html directory. Cowboy to answer your sig - one more than if only I and dead people read hex, 57007 __________________ T313C0mun1s7 PASS65 (72.29.93.65) - Reseller ======================== Last edited by T313C0mun1s7; July 25th, 2006 at 3:32 PM.

July 25th, 2006, 5:32 PM	#6 (permalink)
Skipdawg Insanely Super #1 Joined in Jul 2005 Lives in Northwest USA 4,154 posts Gave thanks: 39 Thanked 78 times	phpsuexec IMHO is just a royal pain in the butt! One of the many reasons I went VPS so I had control over that. It is not enabled on my VPS. Oh and have I stated I hate phpsuexec hehehehe __________________

July 25th, 2006, 5:33 PM	#7 (permalink)
Kayla Surpass Staff Joined in May 2003 Lives in Orlando 23,934 posts Gave thanks: 904 Thanked 770 times	It's a pain in the butt but if a php shell somehow gets on your server and scammers begin to upload scam and spam happily into your open folders.. even larger pain in the butt. =) __________________ Have you ever want to draw a windmill, and after that animate it? No problem!

July 25th, 2006, 5:41 PM	#8 (permalink)
Skipdawg Insanely Super #1 Joined in Jul 2005 Lives in Northwest USA 4,154 posts Gave thanks: 39 Thanked 78 times	Yea that could be a real big pain. But keeping a close eye on everything 2 to 3 times a day will make that hard too. As support has discovered when I see something odd they get to know about it. But then I'm a nut case too. LaughLaughLaugh __________________

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Rate This Thread
Rate This Thread: