Nginx+;拒绝用户home dir的PHP-FPM权限
PHP-FPM配置Nginx+;拒绝用户home dir的PHP-FPM权限,php,linux,nginx,permissions,Php,Linux,Nginx,Permissions,PHP-FPM配置 user = www-data group = www-data listen.owner = www-data listen.group = www-data Nginx配置 user www-data; 主机配置是 server { listen 80; listen [::]:80; listen 443 ssl; listen [::]:443 ssl; root /home/SITENAME/www; inde
user = www-data
group = www-data
listen.owner = www-data
listen.group = www-data
Nginx配置
user www-data;
主机配置是
server {
listen 80;
listen [::]:80;
listen 443 ssl;
listen [::]:443 ssl;
root /home/SITENAME/www;
index index.php;
server_name SITENAME.com www.SITENAME.com;
include snippets/ssl-SITENAME.com.conf;
include snippets/ssl-params.conf;
access_log /home/SITENAME/logs/access.log combined;
error_log /home/SITENAME/logs/error.log warn;
location ~ /.well-known {
allow all;
}
location / {
try_files $uri $uri/ =404;
}
location ~ \.php$ {
include snippets/fastcgi-php.conf;
fastcgi_pass unix:/var/run/php/php7.2-fpm.sock;
}
location ~ /\.ht {
deny all;
}
expires 86400s;
add_header Pragma public;
add_header Cache-Control "max-age=86400, public, must-revalidate, proxy-revalidate";
location ~* ^.+\.(css|js)$ {
rewrite ^(.+)\.(\d+)\.(css|js)$ $1.$3 last;
expires 31536000s;
access_log off;
log_not_found off;
add_header Pragma public;
add_header Cache-Control "max-age=31536000, public";
}
location ~* \.(asf|asx|wax|wmv|wmx|avi|bmp|class|divx|doc|docx|eot|exe|gif|gz|gzip|ico|jpg|jpeg|jpe|mdb|mid|midi|mov|qt|mp3|m4a|mp4|m4v|mpeg|mpg|mpe|mpp|odb|odc|odf|odg|odp|ods|odt|ogg|ogv|otf|pdf|png|pot|pps|ppt|pptx|ra|ram|svg|svgz|swf|tar|t?gz|tif|tiff|ttf|wav|webm|wma|woff|wri|xla|xls|xlsx|xlt|xlw|zip)$ {
expires 31536000s;
access_log off;
log_not_found off;
add_header Pragma public;
add_header Cache-Control "max-age=31536000, public";
}
}
用户sitename位于组www数据中,用户www数据位于组用户中,但我仍然无法在主目录中写入,如何修复?
Chown user home dir to www data不是解决方案,就像使用777不是解决方案一样。为了清楚起见,发布以下命令的输出:
#id www data
,#stat/home/SITENAME/www
uid=33(www数据)gid=33(www数据)groups=33(www数据),1003(SITENAME)stat/home/SITENAME/www文件:'/home/SITENAME/www'大小:4096块:8 IO块:4096目录设备:9650b621h/2521871905d Inode:131164链接:6访问:(0755/drwxr-xr-x)Uid:(1003/SITENAME)Gid:(1003/SITENAME)访问:2018-08-01 04:46:11.143075430-0400修改:2018-08-01 04:43:17.506400480-0400更改:2018-08-01 04:43:17.506400480-0400出生:-
为什么不将SITENAME
用户添加到www-data
组中,并在PHP-FPM配置中使用SITENAME
?当前的设置有点落后。因为我不仅有一个站点名