> Cannot Run
> Cannot Run As Forbidden Uid 48/php-fcgi-starter
Cannot Run As Forbidden Uid 48/php-fcgi-starter
I originally shied from this with all the warnings about php not being threadsafe but most the online articles seem to point towards it being safe to run php under worker I've followed the instructions laid out by the posts, and as far as I can see, everything should work ok......(but of course it isn't!) Folder/file structure: /home/domain/etc/php5/php.ini (644) (Owner/Group: domain) /home/domain/fcgi-bin/php5.cgi Note that registered members see fewer ads, and ContentLink is completely disabled once you log in. Nominal Animal View Public Profile View LQ Blog View Review Entries View HCL Entries Find More Posts by Nominal Animal View Blog 05-26-2011, 01:17 AM #3 andrew111 LQ Newbie news
Cheers, Paul Log in or register to post comments #12 Mon, 03/16/2009 - 15:51 (Reply to #11) rapidleech Correct me if I'm wrong, but seeing as it's even hard to find Hope that helps. Last edited by andrew111; 05-26-2011 at 01:39 AM. Can I hint the optimizer by giving the range of an integer?
not spread over several posts by replies from non-staff... Thanks, Log in or register to post comments #7 Thu, 10/09/2008 - 00:11 (Reply to #6) HostHoboGuy andreychek wrote:
Howdy, To enable it for all future sites, go into System applying patch 038_no_LD_LIBRARY_PATH to ./ ... Introduction to Linux - A Hands on Guide This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started
For SUEXEC PHP CGI scripts, I prefer mod_cgid for the simpler security implications. (If each script is executed separately for each request, then mod_cgid is faster, too.) Note that the SUEXEC Working with scripts there is then safer, since you won't accidentally publish some source code. Right now, I'm a little uncomfortable with hard-coding things like /home/username into the httpd.conf--if the username ever changes (through Virtualmin), will all occurrences be updated? Xenforo skin by Xenfocus Contact Us Help Imprint Home Top RSS Terms and Rules Forum software by XenForo™ ©2010-2014 XenForo Ltd.
Main Menu LQ Calendar LQ Rules LQ Sitemap Site FAQ View New Posts View Latest Posts Zero Reply Threads LQ Wiki Most Wanted Jeremy's Blog Report LQ Bug Syndicate Latest with suexec enabled 500 internal server error and suexec log says: Code: [2011-05-27 17:19:32]: uid: (1001/andrew1) gid: (1001/andrew1) cmd: version.php [2011-05-27 17:19:32]: directory is writable by others: (/home/andrew1/public_html) removed group write Last edited: May 22, 2007 mtuser, May 22, 2007 #15 meemu ISPConfig Developer ISPConfig Developer can you post the content of /var/www/php-fastcgi/web1/php-fcgi-starter ? Quote: Originally Posted by andrew111 Am still using mpm prefork and suspect worker might give even better performance?
However, you can update it individually for each existing website by first choosing the domain in question, then choosing Server Configuration -> Website Options, and modifying "PHP script execution mode". -Eric useful source I was experimenting, trying to get it to use a copy of the php binary that I placed in the home/andrew1 directory but I couldn't even achieve that - so yes Regards, Taguapire Taguapire, May 9, 2007 #5 till Super Moderator Staff Member ISPConfig Developer fastcgi is not faster the mod_php, but it allows to run php under the admin user Not sure if I am allowed to ask for paid help from you with this on this forum or not?
applying patch 032_suexec_is_shared to ./ ... navigate to this website if this thread is going to be stickied. applying patch 099_config_guess_sub_update to ./ ... Please visit this page to clear all LQ-related cookies.
The best explanation I have googled so far for this command not in docroot is suexec requires the CGI script to be under the server's DocumentRoot (not the VirtualHost DocumentRoot). I get 403 errors on them, although they have the correct user and group and have exec permissions. give up. http://fortecrm.net/cannot-run/cannot-run-as-forbidden-uid-33-php-fcgi.html Reason I ask is I had a lot of difficulty getting FastCGI tutorials I found online to actually work - so I thought maybe setting it up using the basic tutorials
I see that apache already has a module for fcgid in the configuration files, and that it is active. It is owned by the user and is executable and not writable by g/o. DefaultInitEnv PHPRC "/etc/php5/cgi" # Maximum requests a process handles before it is terminated MaxRequestsPerProcess 1000 # Maximum number of PHP processes MaxProcessCount 10 # Number of seconds of idle time before
applying patch 009_apache2_has_dso to ./ ...
The difference to using a separate directory for scripts is simple: all content in such a directory is treated as scripts, never as published media. www.copiatek.nl Log in or register to post comments #9 Fri, 10/10/2008 - 00:51 (Reply to #8) HostHoboGuy Here is what I added to my httpd.conf file:
AddHandler fcgid-script .php
AllowOverride None Options ExecCGI -MultiViews +SymLinksIfOwnerMatch Order allow,deny Allow from all The above configuration creates the global scheme://virtualhost/cgi-bin/ URL Does anyone have any hints to solve this problem?
till, Apr 24, 2007 #2 falko Super Moderator ISPConfig Developer Do you think you can create a tutorial and submit it? Last edited by andrew111; 05-27-2011 at 06:45 PM. Top time-walker Posts: 48 Joined: 2006-02-15 14:17 Location: Osna Contact: Contact time-walker ICQ Website Re: APACHE2 + PHP5 + FASTCGID letzer post von TM Quote Post by time-walker » 2007-12-10 18:41 http://fortecrm.net/cannot-run/cannot-run-as-forbidden-uid-fcgi.html I am calling it quits for tonight.
If it's not there yet change your entry in /etc/apt/sources.list from Code: deb http://ftp.uk.debian.org/debian/ stable main to Code: deb http://ftp.uk.debian.org/debian/ stable main non-free contrib Contrib can be useful too sometimes. Incorrect? What I have done: 1) Made a directory and file "/home/DOMAIN-USER/fcgi-bin/php5.fcgi that literally has: [code:1]#!/bin/bash PHPRC=$PWD/../etc/php5 export PHPRC umask 022 SCRIPT_FILENAME=$PATH_TRANSLATED export SCRIPT_FILENAME exec /usr/bin/php-cgi[/code:1] 2) Copied the file "/etc/php5/php.ini" The PHP CGI interpreter ignores the actual file Apache specifies, and re-parses the file name based on certain environment variables. the error messages are definitely being generated everytime.
Forum Statistics Discussions: 53,838 Messages: 285,376 Members: 91,942 Latest Member: Das Swadesh Share This Page Tweet Howtoforge - Linux Howtos and Tutorials Home Forums > ISPConfig 2 > Tips/Tricks/Mods > English Note: I edited this message 2011-05-27 to reflect a tested configuration using Debian apache2 and apache2-suexec or apache2-suexec-custom packages. but you know it better - right? Now that it is working I will dig around and see if I can convert back to your method.
Are you sure the ownership of the wrapper and the application files are the user? For added security, let's limit allowed files to those that end with .php It is possible to map one or more directories to the same URL addresses, but it is rarely All done! and your permissions look good above.
ok. It is owned by the user and is executable and not writable by g/o. Usually, Debian people recommend using a normal unprivileged account for compiling things and getting package sources. Confused!
Yes, my password is: Forgot your password? Am sure it is close! For simplicity's sake, this is all done as root. So, I'm guessing I just need to, as the first post stated, "recompiled suEXEC with docroot /home." ? /etc/apache2/httpd.conf is completely empty for me, so I have been editing the /etc/apache2/sites-available/.conf