PHPInfo()

sphere

Verified User
Joined
Nov 30, 2003
Messages
17
I'm running DA on FreeBSD 4.8. When I run phpinfo() function from php, it display this:

Variable Value
USER root
HOME /root
LOGNAME root
PATH /etc:/bin:/sbin:/usr/bin:/usr/sbin
SHELL /bin/sh


You notice that the root is displayed in environtment variable. Is it ok with that? I'm just affraid if it's going to affect security performance.
 
Hello,

So you're running the php program as root from ssh? Yes, that's fine. Php doesn't drop privileges in any way.. that's apache's job, and since you're bypassing apache and doing it manually, if you are logged in as root, it will show the root environement. When php is run through apache, it will be dropped to the apache environment.

John
 
Hi John,

I don't think I'm bypassing apache since I run it from a script in website. My apache run under root and I think that makes php show root environment. But should apache run under root? I'm afraid some users will hacked into the system.

Here is the info when I run ps:

======================================================

last pid: 9370; load averages: 0.00, 0.00, 0.00 up 1+14:04:44 01:42:24
58 processes: 2 running, 56 sleeping
CPU states: 0.0% user, 0.0% nice, 100% system, 0.0% interrupt, 100% idle
Mem: 64M Active, 136M Inact, 54M Wired, 12K Cache, 60M Buf, 244M Free
Swap: 1024M Total, 1024M Free

PID USERNAME PRI NICE SIZE RES STATE TIME WCPU CPU COMMAND
298 mysql 2 0 37924K 17824K poll 0:24 0.00% 0.00% mysqld
324 mail 10 0 11920K 11588K nanslp 0:06 0.00% 0.00% perl
306 mail 10 0 11920K 11588K nanslp 0:05 0.00% 0.00% perl
325 mail 10 0 11920K 11588K nanslp 0:04 0.00% 0.00% perl
4094 mail 10 0 11916K 11584K nanslp 0:04 0.00% 0.00% perl
273 root 10 0 1452K 972K nanslp 0:02 0.00% 0.00% da-popb4smtp
113 root 10 0 1024K 772K nanslp 0:01 0.00% 0.00% cron
272 root 2 0 1844K 1508K select 0:01 0.00% 0.00% proftpd
115 root 2 0 3008K 2208K select 0:01 0.00% 0.00% sshd
313 root 2 0 19140K 18836K select 0:00 0.00% 0.00% perl
104 root 2 0 948K 676K select 0:00 0.00% 0.00% syslogd
226 root 10 0 2120K 1104K wait 0:00 0.00% 0.00% directadmin
8806 mail 10 0 11916K 11584K nanslp 0:00 0.00% 0.00% perl
8928 root 2 0 15280K 13136K select 0:00 0.00% 0.00% httpd
117 root 2 0 924K 576K select 0:00 0.00% 0.00% usbd
286 clamav 10 0 1292K 1036K nanslp 0:00 0.00% 0.00% freshclam
280 root 2 0 2200K 1804K select 0:00 0.00% 0.00% named
9350 root 2 0 5708K 2460K sbwait 0:00 0.00% 0.00% sshd
303 mail 10 0 11828K 11508K wait 0:00 0.00% 0.00% perl
214 mail 2 0 3568K 2088K select 0:00 0.00% 0.00% exim
234 root 10 0 644K 452K wait 0:00 0.00% 0.00% sh
316 root 3 0 952K 652K ttyin 0:00 0.00% 0.00% getty
320 root 3 0 952K 652K ttyin 0:00 0.00% 0.00% getty
323 root 3 0 952K 652K ttyin 0:00 0.00% 0.00% getty
322 root 3 0 952K 652K ttyin 0:00 0.00% 0.00% getty
$ ps
PID TT STAT TIME COMMAND
9357 p0 Ss 0:00.00 -sh (sh)
9371 p0 R+ 0:00.00 ps

======================================================

BTW I also has problem when I tried to upload a file through File Manager. It shows this following error message:

An Error Occured

Details
There is a symbolic link in that path. The path must be a full non-linked path.

Could you tell me what's going on? I'm just trying to upload my file into /domains/mydomain.com/public_html/
 
Last edited:
It's ok now, I just changed user/group to nobody in httpd.conf, but I still get an error when uploading file. So I guess I will create another topic about this.
 
Hello,

Our default is to setup apache to run apache as "apache", not root. (yes, root would be a huge security hole, which is why we don't do it)..

Anyway, I'll have look at the other thread you've mentioned.

John
 
Back
Top