linux

linux给文件或目录添加apache权限

系统环境:ubuntu11.10/apache2/php5.3.6
在LAMP环境中,测试一个简单的php文件上传功能时,发现/var/log/apache2/error.log中出现如下php警告:

1
2
[Tue Jan 31 09:40:27 2012] [error] [client 127.0.0.1] PHP Warning: move_uploaded_file(/home/leotody/32883679.jpeg): failed to open stream: Permission denied in /var/www/upload_file.php on line 25, referer: http://localhost/info.html
[Tue Jan 31 09:40:27 2012] [error] [client 127.0.0.1] PHP Warning: move_uploaded_file(): Unable to move '/tmp/phps05ssU' to '/home/leotody/32883679.jpeg' in /var/www/upload_file.php on line 25, referer: http://localhost/info.html

提示没有访问权限,文件上传的代码如下:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
if (file_exists("upload/" . $_FILES["file"]["name"]))
  {
  	   echo $_FILES["file"]["name"] . " already exists. ";
  }
else
  {
    if(move_uploaded_file($_FILES["file"]["tmp_name"], "upload/".$_FILES["file"]["name"]))
    {
    	echo "Stored in: " . "upload/" . $_FILES["file"]["name"];
    }
    else
    {
     	echo "move error!";
    }
  }

页面中显示”move error!”,说明move_uploaded_file()函数执行失败。
通过查找资料,发现网上有说是selinux启动的原因,检查系统并未启动selinux,查看upload目录默认权限ls -ld upload,结果为755:

drwxr-xr-x 2 root root 4096 2012-01-31 10:59 upload

将upload目录权限改为777,sudo chmod 777 upload,再测试上传功能成功。但这种修改权限的方法并不安全。
故可以改upload目录的拥有者为www-data(即apache)

sudo chown -R www-data:www-data upload

然后再测试上传功能成功。

drwxr-xr-x 2 www-data www-data 4096 2012-01-31 10:59 upload