[wp-trac] [WordPress Trac] #10603: All folders created through wordpress media uploader are owned by the apache user, thus denying all access regardless of permissions
WordPress Trac
wp-trac at lists.automattic.com
Thu Aug 13 06:27:07 UTC 2009
#10603: All folders created through wordpress media uploader are owned by the
apache user, thus denying all access regardless of permissions
-----------------------------------------------------------------+----------
Reporter: jakedahn | Owner:
Type: defect (bug) | Status: closed
Priority: high | Milestone:
Component: Media | Version:
Severity: major | Resolution: wontfix
Keywords: apache, user, upload, media, permissions, ownership |
-----------------------------------------------------------------+----------
Changes (by dd32):
* status: new => closed
* resolution: => wontfix
* milestone: Unassigned =>
Comment:
This is the expected behaviour.
This is also why the Plugin/Theme/Core upgrader/installers require FTP
credentials in most situations, To prevent issues like this cropping up.
0777 permissions *should* allow the user to read/write/modify the files
within, but its not always the case, and they're still owned by the user
that creates them (In this case, the Web server, 'apache').
The only other option is for WordPress to ask for FTP details for every
upload, or for the server to be run as root (Which no one would in their
right mind do) to allow Apache to save the files and appear as its owned
by someone.
Every PHP program which accepts file uploads suffers the same problem,
Unless you're running under SuExec or SuPHP, where PHP is run as the user
that owns it, thus the files it creates are owned by the original user..
I'm closing as wontfix, due to the nature of the problem, and that its not
something that can really be "fixed" and remaining to run as users expect
--
Ticket URL: <http://core.trac.wordpress.org/ticket/10603#comment:1>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list