[ic] socket permission group

k palazani at gmx.net
Mon May 10 21:28:41 EDT 2004

John Young wrote:
> k wrote:
>> After restarting the ic server (v5.2.0) the permission group of the
>> socket-files changes to 'user', so I had to change the group by hand
>> to allow apache the use of the socket.
>> Is there a way, maybe similar to the SocketPerm Directive, to set
>> the socket permission group?
> Set the group sticky bit on the directory in which it resides.
> chmod g+s directoryname
> and also set the group ownership to a group to which your interchange
> user and httpd user both belong (may require editing /etc/group).  I
> would not make those two users have the same primary group.
> chgrp sharedgroupname directoryname
> You also might want to make sure that there is no sensitive
> information
> in that directory (nothing that would matter if httpd read it) and/or
> tighten-up permissions on files in there to not allow reading by
> group, etc. Shouldn't be much in there anyway.
> You can use symbolic links to the directory if you need to get it into
> a place where it can be read (due to permissions, chroot, or
> whatever).

Thanks for all the hints John, now it's running fine!

I have to apologize posting that "problem" here in this list, because it's
no ic matter at all.


More information about the interchange-users mailing list