Hi,
what is the correct procedure for switching to Compressed uploading?
One of our clients (we provide hosting) has Actinic installed, and wants to switch/try the compressed uploads.
Whenever he attempts the upload it fails because the files in "acatalog" are owned by the user who does the FTP upload with permissions set to prevent other users writing to these files.
Actinic support answer "Install Perl module and ensure permissions are 777" on acatalog about three times, despite the perl modules being in place, and then try and sell him their own hosting arrangements.
I assume we just need to change all the files in "acatalog" to be owned by the webserver process. But Actinic seem unable to advise on the appropriate file permissions and ownership for running Actinic.
In our environment all users files uploaded via FTP are owned by a Linux account associated with that user and not writable by any other user (or the webserver). The webserver has its own account. This is pretty standard shared hosting practice, since it provides a (very small) modicum of security to prevent other users of the service modifying the users files. Obviously the Compressed Upload will potentially allow any other users to overwrite the contents of "acatalog" if they have their own CGI access but this is an understood risk of the shared hosting config on that server.
Server: Debian Lenny, vsftp, chrooted to users folder, Apache 2.2
what is the correct procedure for switching to Compressed uploading?
One of our clients (we provide hosting) has Actinic installed, and wants to switch/try the compressed uploads.
Whenever he attempts the upload it fails because the files in "acatalog" are owned by the user who does the FTP upload with permissions set to prevent other users writing to these files.
Actinic support answer "Install Perl module and ensure permissions are 777" on acatalog about three times, despite the perl modules being in place, and then try and sell him their own hosting arrangements.
I assume we just need to change all the files in "acatalog" to be owned by the webserver process. But Actinic seem unable to advise on the appropriate file permissions and ownership for running Actinic.
In our environment all users files uploaded via FTP are owned by a Linux account associated with that user and not writable by any other user (or the webserver). The webserver has its own account. This is pretty standard shared hosting practice, since it provides a (very small) modicum of security to prevent other users of the service modifying the users files. Obviously the Compressed Upload will potentially allow any other users to overwrite the contents of "acatalog" if they have their own CGI access but this is an understood risk of the shared hosting config on that server.
Server: Debian Lenny, vsftp, chrooted to users folder, Apache 2.2
Comment