From:             [EMAIL PROTECTED]
Operating system: Red Hat Linux 7.2
PHP version:      4.2.0
PHP Bug Type:     *Configuration Issues
Bug description:  File permissions security problem

When I run "make install" as root, most of the files installed under
/usr/local/include/php have a user id of 500, a group id of 500, and a
mode of 664. This is very insecure for (hopefully) obvious reasons: it
gives whichever user who has a numeric id of 500 write access to the
files, and also any users in group 500.

Ideally, it should install the files with user id 0, group id 0, and a
mode of 644.


Here is my configure line, in case it matters:

./configure --with-apache=../apache_1.3.24 --enable-track-vars \
  --with-mysql --with-zlib --with-gd
-- 
Edit bug report at http://bugs.php.net/?id=16920&edit=1
-- 
Fixed in CVS:        http://bugs.php.net/fix.php?id=16920&r=fixedcvs
Fixed in release:    http://bugs.php.net/fix.php?id=16920&r=alreadyfixed
Need backtrace:      http://bugs.php.net/fix.php?id=16920&r=needtrace
Try newer version:   http://bugs.php.net/fix.php?id=16920&r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=16920&r=support
Expected behavior:   http://bugs.php.net/fix.php?id=16920&r=notwrong
Not enough info:     http://bugs.php.net/fix.php?id=16920&r=notenoughinfo
Submitted twice:     http://bugs.php.net/fix.php?id=16920&r=submittedtwice

Reply via email to