<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">On 14.06.2013 13:29, Reindl Harald
wrote:<br>
</div>
<blockquote cite="mid:51BAFE8D.2060306@thelounge.net" type="cite">
<pre wrap="">
Am 14.06.2013 13:21, schrieb Rafnews:
</pre>
<blockquote type="cite">
<pre wrap="">On 14.06.2013 13:18, Reindl Harald wrote:
</pre>
<blockquote type="cite">
<pre wrap="">Am 14.06.2013 12:35, schrieb Rafnews:
</pre>
<blockquote type="cite">
<pre wrap="">however using my standard fedora user account, Ii still can not edit/remove/move
files/folders owned by apache user account. while searching on internet i discovered
that fastCGI should allow me (using my fedora user account) to do such thing, even
if files/folders are owned by apache user account
</pre>
</blockquote>
<pre wrap="">this has *nothing* to with mod_php oder fastcgi
the permissions are how they are
* man setfacl
* man chown
* man chgrp
* man chmod
and by the way - the apache user should *not* own the files because
typically a webserver should not be able to rewrite his content
files in case of a security breach
</pre>
</blockquote>
<pre wrap="">
2 of our webserver hosting companies told us that if we want to have files own
by some other user account than apache, it is needed to have fastCGI..if not,
than we need suPHP or suExec.
</pre>
</blockquote>
<pre wrap="">
fire the company if they said this really in this way
CGI is needed instead mod_php to have own processes which is
the base for suPHP and suExec but that has *nothing* to do with
your problem above on your local test-setup which would be solved
with the right permissions / ACL's
</pre>
<blockquote type="cite">
<pre wrap="">However it has been told that FastCGI provide also a performance
increase so, we would like to reach it also :)
</pre>
</blockquote>
<pre wrap="">
ok, fire them really
it is impossible that the webserver speaking via CGI/FCGI with a standalone PHP
binary is faster than having PHP inside the httpd process and this sounds like
a typical "webserver hosting company" knowing zero to nothing
</pre>
</blockquote>
So to clear the statement:<br>
<br>
Goal:<br>
i'm trying to create at home a webserver for testing purposes,
having the same behavior as webhosting companies offers.<br>
the purpose behind that it's to have a representative environment
when testing to not have particular "surprises" with web application
i developed when migrating them to production servers.<br>
<br>
Situation:<br>
i installed on Fedora 18 a webserver where i need:<br>
- FastCGI<br>
- to use my standard fedora user account (let's say "rafnews") to
edit/move/delete files/folder in my webroot /var/www/html folders,
where files have 644 as permissions and folders : 705.<br>
<br>
for now, all files/folders have correct permissions but owner is
apache:apache<br>
<br>
1. FastCGI settings:<br>
my webserver was running (on PHP 5.4, <u>not php-fpm</u>) correctly
using the standard Apache 2.4 handler, now i'm trying to make use of
FastCGI bit without success.<br>
Here is my php.conf file setting from apache 2.4.4:<br>
<blockquote>DirectoryIndex index.php<br>
<br>
php_value session.save_handler "files"<br>
php_value session.save_path "/var/lib/php/session"<br>
</blockquote>
<br>
i removed the addtype and handler as suggested on internet. I added
in myvhosts.conf the following thing (withing <VirtualHost
*:80> tag):<br>
<IfModule proxy_module><br>
ProxyPassMatch ^/(.*\.php(/.*)?)$
fcgi://127.0.0.1/var/www/html/info/$1<br>
</IfModule><br>
<br>
where info is 1 subdirectoy of my webroot.<br>
<br>
Apache starts, however when i want to access to webpage i get the
following error (in vhost log dedicated to my website):<br>
[Fri Jun 14 14:16:07.827425 2013] [proxy:error] [pid 24500]
(111)Connection refused: AH00957: FCGI: attempt to connect to
127.0.0.1:8000 (*) failed<br>
[Fri Jun 14 14:16:07.827539 2013] [proxy_fcgi:error] [pid 24500]
[client 127.0.0.1:40982] AH01079: failed to make connection to
backend: 127.0.0.1<br>
<br>
Q1: my webserver (even if it is a local webserver for testing) has a
fixe IP address. Should i use it in <ifModule proxy_module>
tag instead of 127.0.0.1 ?<br>
Q2: port in error log is 8000, where can i set it ? is it possible
to tell fastCGI to use standard 80 and to not conflict with standard
http ? if yes how ?<br>
<br>
2. suExec:<br>
While checking httpd logs i discovered that:<br>
[suexec:notice] [pid 24705] AH01232: suEXEC mechanism enabled
(wrapper: /usr/sbin/suexec)<br>
<br>
so it mean suExec is running on server.<br>
if i change all files/folders owner to "rafnews:rafnews"
(files/folders in /var/www/html) apache do not work and no webpage
is displayed.<br>
<br>
so where is my mistake ?<br>
<br>
thx.<br>
<br>
Al.<br>
<br>
<br>
</body>
</html>