Ulli Ivens
21.02.02, 05:56
Ich benutze das php sysinfo scritp und möchte damit die Statistik meines Rechners anzeigen lassen. Dazu braucht das script (das als apache user und apache group läuft) aber Leserechte ind /proc. Daraufhin habe ich den Autor des Scriptes folgende eMail geschrieben:
On Wed, 2002-02-20 at 14:14, Ulrich Ivens wrote:
>
>
> Your Script is great, but i have some problems with it...
>
> I use the kernel 2.2.19-6.3mdksecure. Please take a look at
> http://spookyshome.homelinux.org/statistics/index.php The Script can't
> resolv the hostname and dont display the network statistics. I think
> this is because it have not the permissions to read the stats from
> there. I can't change with chmod the permissions (in /proc) to others
> (because the scripts runs as apache user and apache group). Do you have
> an Idea how I can fix it ??
>
> The phpsafe mode ist off (safe_mode = Off)
>
> Also I'd take a look at some forums and the Mandrake sites, but none
> could help me so far....
>
> Sorry for my english, I hope you understand me and my problem.
No problem. I believe the mdksecure kernel has has the secure /proc
patches applied. You need to make sure that the user apache runs as
needs access to a bunch of files in /proc. The network information is
/proc/net/dev. The hostname information is read out of
/proc/sys/kernel/hostname..
So wie ich das verstehe soll ich das Sysinfo Script unter einem anderen User laufen lassen.... wie stelle ich das jetzt am besten an, so das die Sicherheit nicht allzusehr leidet ? Hat jemand einen Tip für mich ?
Übrigens: so sollte das Sysinfo Script aussehen wenn es dann richtig läuft:
http://phpsysinfo.sourceforge.net/phpsysinfo
On Wed, 2002-02-20 at 14:14, Ulrich Ivens wrote:
>
>
> Your Script is great, but i have some problems with it...
>
> I use the kernel 2.2.19-6.3mdksecure. Please take a look at
> http://spookyshome.homelinux.org/statistics/index.php The Script can't
> resolv the hostname and dont display the network statistics. I think
> this is because it have not the permissions to read the stats from
> there. I can't change with chmod the permissions (in /proc) to others
> (because the scripts runs as apache user and apache group). Do you have
> an Idea how I can fix it ??
>
> The phpsafe mode ist off (safe_mode = Off)
>
> Also I'd take a look at some forums and the Mandrake sites, but none
> could help me so far....
>
> Sorry for my english, I hope you understand me and my problem.
No problem. I believe the mdksecure kernel has has the secure /proc
patches applied. You need to make sure that the user apache runs as
needs access to a bunch of files in /proc. The network information is
/proc/net/dev. The hostname information is read out of
/proc/sys/kernel/hostname..
So wie ich das verstehe soll ich das Sysinfo Script unter einem anderen User laufen lassen.... wie stelle ich das jetzt am besten an, so das die Sicherheit nicht allzusehr leidet ? Hat jemand einen Tip für mich ?
Übrigens: so sollte das Sysinfo Script aussehen wenn es dann richtig läuft:
http://phpsysinfo.sourceforge.net/phpsysinfo