give apache permission to write

[richardko]

Hi,
we run website for multiple clients where all the client files are stored in /home directory. each client has his own group and own name.
The problem I am facing is when apache needs to write info to file inside /home directory. Since the client by default owns the directory the apache error log shows "permissions denied"

Is there a way to give apache higher precedence of some kind either in apache configuration file or with linux so that linux is able to modify that file.

the server is fedora core 6
thanks
ro
PS: I am not sure if this question is related to "apache" forum also. I have not posted this there though.

 

[smah]

Generally speaking, having apache write to the filesystem is not the best idea. If apache were comprimised all sorts of things could be done. What exactly needs to be written by apache?

 

[richardko]

Hi
thanks for the reply.
Apache needs to write to certain files maintained by the clients. These are merely html files which can be edited by the clients in a browsable interface.

 

[lgarner]

The way around it is to change the group ownership of the directories to apache's group and make sure it has write permission.

 

[RhythmAce]

I have to agree with smah on this one. Without authentication, anybody can browse to that user's directory and edit files. It is true that the client is the owner but the file system has no way of knowing who is browsing the directory. It only sees apache as the user. A better way is to use authentication. The most common method is to use .htaccess.