Hi,
On Thu, Sep 8, 2016 at 8:17 PM, Bill Shirley <bshirley(a)memphis.apirx.biz> wrote:
Why didn't you try it? It works for me.
I spent my time trying to help and you dismissed it
WITHOUT reason.
Not cool.
I'm sorry you feel that I've dismissed your offer to help. I haven't.
We're just having a discussion. I'm very familiar with how suid/sgid
works, and have in fact done that for now. I appreciate that you take
the issue so personally; it tells me you're sincerely interested in
helping.
There was still a problem with ssh due to ownership of the ssh user
separate from apache which had to be changed afterwards.
The reason I was exploring other possibilities is because generally
speaking the apache user shouldn't have write privileges in the
document root. If there was ever an apache compromise leading to a
shell, it would put in jeopardy the entire website. I'd like to avoid
that.
I'm disappointed there isn't more explicit information on directory
permissions in the joomla documentation. I believe the reason for that
is because they recommend the mod_suphp module for managing
permissions.
Thanks,
Alex