Hi again Jonathan, (just kept the relevant stuff...) <snip> >>>> The Administrator's window has a message at the bottom: "Config >>>> file can't be opened. Please check config.php." My guess that this >>>> is a permissions error, because when I change the permissions to >>>> 0777, the message goes away and changes take effect. The >>>> documentation for the plugin suggest to change the permissions to >>>> 0660, but when that happens then the Administrator link isn't >>>> listed on the options page.
<snip> >> [root@mail webmail]# chmod 0660 config/config.php >> [root@mail webmail]# chown apache:shadow-readers config/config.php > >So with the file owned by apache, and the group shadow-readers, and >chmod 0660 you cannot edit the file through the admin plugin? Can't even see it. The administrator's option doesn't show in the options window. >> it does work after changing the ownership to user keith.mastin and >> group shadow-readers: >> [root@mail webmail]# chown keith.mastin:shadow-readers config/config.php >> [root@mail webmail]# chmod 0660 config/config.php >> [root@mail webmail]# ll config/config.php >> -rw-rw---- 1 keith.ma shadow-r 5911 Jan 25 13:16 config/config.php > >So if the file is owned by by keith.mastin, and the group is >shadow-readers, you can update the file? But if it is owned by apache, >and the group is the same you cannot? That makes little sense, unless >apache isn't really part of that group, and is running under the user >keith.mastin. The default group for apache is shadow-readers [gid 2002], and apache is a member of the shadow group. >Silly question, what about the permissions for the config/ directory? >Would that make any difference in the admin plugin's case? drwxrwxr-x 2 kmastin apache 4096 Jan 4 12:39 config A trial run changing the config directory permissions to user keith.mastin and the config.php file permissions to apache:apache 0660 still doesn't give user keith.mastin access to the administrators window. For all intents and purposes, it's working now with the current setup. the only question that I have is can you see any potential or real security issues with the config.php file owned by the listed administrator? Thanks again ------------------------------------------------------- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com -- squirrelmail-users mailing list List Address: [EMAIL PROTECTED] List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
