Web lists-archives.com

php-fpm not correctly using groups?






The apache server can access this file http://xxxx/index.html When I try 
to access this file http://xxxx/test.php, I get file not found with the 
setup/permissions listed below.
When I only change the group of the www.underconstruction.com folder to 
apache in this setup, test.php is executed as it should be. Test.php 
should be executed when apache is member of the login0 like httpd 
process, so why not php-fpm?

Looks to me like not fully or correctly implemented groups? I have no 
idea how this is even possible because that is something for the os to 
handle, not?


drwxr-x---   2 login0 login0    6 Mar 30 20:01 cgi-bin
drwxrwx---   2 login0 login0    6 Mar 30 20:02 tmp
drwxr-x---   2 login0 login0 4096 Apr  3 00:11 logs
drwxr-x---   2 login0 login0   97 Apr  3 12:17 www.underconstruction.com


├── cgi-bin
├── logs
│   ├── www.underconstruction.com-2019.04.03-access.log
│   └── www.underconstruction.com-2019.04.03-error.log
├── tmp
└── www.underconstruction.com
    ├── index.html
    ├── test2.php
    ├── test-mail.php
    └── test.php


[@ login0]# groups apache
apache : apache login0


[@ php-fpm.d]# cat www.underconstruction.com.conf
[www.underconstruction.com]

user = apache
group = apache

chroot = /home/login0/www.underconstruction.com

listen = /var/run/php-fpm/www.underconstruction.com.sock

listen.owner = apache
listen.group = apache
listen.mode = 0660
listen.allowed_clients = 127.0.0.1

pm = dynamic
pm.max_children = 10
pm.start_servers = 1
pm.min_spare_servers = 1
pm.max_spare_servers = 10


[@ ]# rpm -qa | grep php72
rh-php72-php-json-7.2.10-3.el7.x86_64
rh-php72-php-xml-7.2.10-3.el7.x86_64
rh-php72-php-fpm-7.2.10-3.el7.x86_64
rh-php72-runtime-1-2.el7.x86_64
rh-php72-php-zip-7.2.10-3.el7.x86_64
rh-php72-php-cli-7.2.10-3.el7.x86_64
rh-php72-php-process-7.2.10-3.el7.x86_64
rh-php72-1-2.el7.x86_64
rh-php72-php-common-7.2.10-3.el7.x86_64
rh-php72-php-pear-1.10.5-1.el7.noarch