From: [EMAIL PROTECTED] Operating system: Red Hat Linux 7.2 PHP version: 4.2.0 PHP Bug Type: *Configuration Issues Bug description: File permissions security problem
When I run "make install" as root, most of the files installed under /usr/local/include/php have a user id of 500, a group id of 500, and a mode of 664. This is very insecure for (hopefully) obvious reasons: it gives whichever user who has a numeric id of 500 write access to the files, and also any users in group 500. Ideally, it should install the files with user id 0, group id 0, and a mode of 644. Here is my configure line, in case it matters: ./configure --with-apache=../apache_1.3.24 --enable-track-vars \ --with-mysql --with-zlib --with-gd -- Edit bug report at http://bugs.php.net/?id=16920&edit=1 -- Fixed in CVS: http://bugs.php.net/fix.php?id=16920&r=fixedcvs Fixed in release: http://bugs.php.net/fix.php?id=16920&r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=16920&r=needtrace Try newer version: http://bugs.php.net/fix.php?id=16920&r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=16920&r=support Expected behavior: http://bugs.php.net/fix.php?id=16920&r=notwrong Not enough info: http://bugs.php.net/fix.php?id=16920&r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=16920&r=submittedtwice