From owner-freebsd-ports  Thu Oct 23 14:10:13 1997
Return-Path: <owner-freebsd-ports>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id OAA28123
          for ports-outgoing; Thu, 23 Oct 1997 14:10:13 -0700 (PDT)
          (envelope-from owner-freebsd-ports)
Received: from wireless.wdc.net (wireless.wdc.net [204.140.136.28])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id OAA28112
          for <ports@FreeBSD.ORG>; Thu, 23 Oct 1997 14:10:09 -0700 (PDT)
          (envelope-from bad@uhf.wireless.net)
Received: from uhf.wireless.net (uhf.wdc.net [198.147.74.44])
	by wireless.wdc.net (8.8.5/8.8.5) with ESMTP id OAA00293;
	Thu, 23 Oct 1997 14:07:17 -0700 (PDT)
Received: from localhost (bad@localhost)
	by uhf.wireless.net (8.8.7/8.8.7) with SMTP id RAA01550;
	Thu, 23 Oct 1997 17:10:48 -0400 (EDT)
Date: Thu, 23 Oct 1997 17:10:47 -0400 (EDT)
From: Bernie Doehner <bad@uhf.wireless.net>
To: "Scot W. Hetzel" <hetzels@aol.com>
cc: FreeBSD Ports <ports@FreeBSD.ORG>
Subject: Re: Apache w/FrontPage Module Port
In-Reply-To: <01bcdfeb$cb4c11c0$0500000a@hetzels>
Message-ID: <Pine.BSF.3.96.971023170822.1535A-100000@uhf.wireless.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-ports@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

Since Jordan is probably listening and he doesn't like crossposting to
multiple mailing lists, I removed the isp mailing list from the Cc: line..

What user is your apache running as? /usr/local/etc/apache  and httpd.conf
should be of the ownership the apache server runs as. Check your apache
config files.

Bernie

> Every thing works to this point but, when you use FrontPage 98 to create a
> FrontPage web, it complains that it can't create its lock file in
> /usr/local/etc/apache as the dir. permission is set to 755 & owned by user
> root & group wheel.  Changing the directory so that it is world writable
> fixes the problem, but causes a security problem. Also, another problem
> appears, 'Cannot open file "/usr/local/etc/apache/httpd.conf" for
> read/write.' the files permissions are set to 644, but apparently the FP
> Exts can't open the file.
> 
>   This problem is caused by the fp_install.sh which reads the httpd.conf
> file for the user that the server is to run as, since the default is nobody
> it chowns -R the directory /usr/local/www/data to user nobody.  While
> /usr/local/etc/apache is owned by root. The solution I have come up with is
> to chown -R ./etc/apache & ./www/data to the same owner & group after the
> fp_install.sh script has run.  As just chown the directories doesn't solve
> the problem with reading the httpd.conf file.
> 
>     b. Add user & group www
>     c. chown -R www:www /usr/local/etc/apache /usr/local/www/data
> 
> Q. How do I add these to the group & passwd list (would like them to be uid
> & gid < 99)?
> 
> Q. Is there any security issues with having the configuration directory
> (./etc/apache)  & files (httpd.conf, srm.conf, access.conf), readable &
> writeable by the frontpage extensions?
> 
> Scot
> 
>