Re: Unix webcat perms & multiple versions of same db in cacheissue

This WebDNA talk-list message is from

2000


It keeps the original formatting.
numero = 29075
interpreted = N
texte = Hello John,Just to be on the safe side, products.db should probably be owned by nobody:web.Another thing, do not use sym links to refer to you databases.If you have:/stores/db/products.dband two sub-sites referring to that database with sym links:/stores/store1/DB/products.db /stores/store1/DB/products.dbwhere DB->/stores/db/WebCat will load products.db twice because it does not resolve the sym link to the original directory and takes the links at face value.Clem.At 13:46 3/15/00, John Butler wrote: >Can we discuss this further here? I tried the support phone but I >always get a >machine. If I was well learn-ed on permissions then I would feel >competent to leave a >detailed message... but actually I need to ask some real basic Qs first: > >I am not the server admin (just a developer) so I don't know what >perms are set on >webcat itself (if that even makes sense or applies) > >the root of my site is set like this (linux/RedHat)- >drwxr-xr-x 11 johnbutl web 4096 Mar 10 13:37 www.domain.com > >inside the site's root we find: >-rw-r--r-- 1 johnbutl web 4527 Mar 5 11:38 >MostOfTheTemplates.tpl (how most >of the pages are set) >drwxrwxrwx 3 nobody web 1024 Mar 13 23:29 WriteHere >(where I keep the >db's that webcat manipulates) >drwxrwx--- 2 nobody web 5120 Mar 15 13:15 ShoppingCarts >(same with >Orders directory) > >inside the WriteHere directory we find: >-rwxrwxrwx 1 johnbutl web 58764 Mar 13 23:29 products.db >(this is how all the >db's that webcat manipulates are set) (This products.db is the one >I previously had >the issue arise with - where there were at least 2 versions in >webcat's cache being >served up alternately.) > >So does this look like a setup that is asking for that issue to >arise? Should it be >different? If you say it should be changed could you mention >security issues and any >other concerns that apply? The system admin and I played with the >perms until we could >append as well as delete records from a db, while also allowing me >to ftp remotely, >while allowing the pages to be served up at all in a remote browser... > >Thanks! > >-John > >WebDNA Support wrote: > >> If WebCatalog is not running with permission nobody then it is possible >> for more than >> one Webcatalog Parent Process to run and manipulating databases. On RED HAT >> WebCatalog spawns one parent process and two children processes, so if you >> see more than >> three processes then you are in trouble (you will always see multiples of 3 >> processes for WebCatalog under RED HAT) >> >> You can always call us at the number below for off list help >> >> Technical Support ********************************** >> Smith Micro, Internet Solutions Div | eCommerce (WebCatalog) >> 16855 West Bernardo Drive, #380 | ------------------------- >> San Diego, CA 92127 | Software & Site Development >> WebCatalog Support: (858) 675-0632 | http://www.smithmicro.com >> Fax: (858) 675-0372 ********************************* >> >> -----Original Message----- >> From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On >> Behalf Of John Butler >> Sent: Tuesday, March 14, 2000 8:55 AM >> To: WebCatalog Talk >> Subject: Unix webcat perms & multiple versions of same db in cache issue >> >> John or Sam or ________? >> (please direct to the person who posted yesterday on the talklist about >> webcat's having 2 versions of the same db in cache problem due to >> permissions improperly set) >> >> Hi . :-) I am the guy who had that problem once but was NOT the one >> who you apparently helped offlist to solve this. I posted yesterday >> saying I would ask for your permissions insight if it ever happened to >> me again, but why wait?! Please tell me what you have discovered >> about the possibility of unix (Linux only?) webcat holding 2+ versions >> of the same db in cache because of some improper permissions. I worked > > with the system admin to get the perms set the best we could figure out >> to make webcat work and provide as much security as possible... but >> maybe we have not done best?. Please share!! >> >> -John >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to >> >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to >> > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Associated Messages, from the most recent to the oldest:

    
  1. Re: Unix webcat perms & multiple versions of same db in cacheissue (John Butler 2000)
  2. Re: Unix webcat perms & multiple versions of same db in cacheissue (Clement Ross 2000)
  3. Re: Unix webcat perms & multiple versions of same db in cache issue (John Butler 2000)
  4. Re: Unix webcat perms & multiple versions of same db in cache issue (WebDNA Support 2000)
  5. Unix webcat perms & multiple versions of same db in cache issue (John Butler 2000)
Hello John,Just to be on the safe side, products.db should probably be owned by nobody:web.Another thing, do not use sym links to refer to you databases.If you have:/stores/db/products.dband two sub-sites referring to that database with sym links:/stores/store1/DB/products.db /stores/store1/DB/products.dbwhere DB->/stores/db/WebCat will load products.db twice because it does not resolve the sym link to the original directory and takes the links at face value.Clem.At 13:46 3/15/00, John Butler wrote: >Can we discuss this further here? I tried the support phone but I >always get a >machine. If I was well learn-ed on permissions then I would feel >competent to leave a >detailed message... but actually I need to ask some real basic Qs first: > >I am not the server admin (just a developer) so I don't know what >perms are set on >webcat itself (if that even makes sense or applies) > >the root of my site is set like this (linux/RedHat)- >drwxr-xr-x 11 johnbutl web 4096 Mar 10 13:37 www.domain.com > >inside the site's root we find: >-rw-r--r-- 1 johnbutl web 4527 Mar 5 11:38 >MostOfTheTemplates.tpl (how most >of the pages are set) >drwxrwxrwx 3 nobody web 1024 Mar 13 23:29 WriteHere >(where I keep the >db's that webcat manipulates) >drwxrwx--- 2 nobody web 5120 Mar 15 13:15 ShoppingCarts >(same with >Orders directory) > >inside the WriteHere directory we find: >-rwxrwxrwx 1 johnbutl web 58764 Mar 13 23:29 products.db >(this is how all the >db's that webcat manipulates are set) (This products.db is the one >I previously had >the issue arise with - where there were at least 2 versions in >webcat's cache being >served up alternately.) > >So does this look like a setup that is asking for that issue to >arise? Should it be >different? If you say it should be changed could you mention >security issues and any >other concerns that apply? The system admin and I played with the >perms until we could >append as well as delete records from a db, while also allowing me >to ftp remotely, >while allowing the pages to be served up at all in a remote browser... > >Thanks! > >-John > >WebDNA Support wrote: > >> If WebCatalog is not running with permission nobody then it is possible >> for more than >> one Webcatalog Parent Process to run and manipulating databases. On RED HAT >> WebCatalog spawns one parent process and two children processes, so if you >> see more than >> three processes then you are in trouble (you will always see multiples of 3 >> processes for WebCatalog under RED HAT) >> >> You can always call us at the number below for off list help >> >> Technical Support ********************************** >> Smith Micro, Internet Solutions Div | eCommerce (WebCatalog) >> 16855 West Bernardo Drive, #380 | ------------------------- >> San Diego, CA 92127 | Software & Site Development >> WebCatalog Support: (858) 675-0632 | http://www.smithmicro.com >> Fax: (858) 675-0372 ********************************* >> >> -----Original Message----- >> From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On >> Behalf Of John Butler >> Sent: Tuesday, March 14, 2000 8:55 AM >> To: WebCatalog Talk >> Subject: Unix webcat perms & multiple versions of same db in cache issue >> >> John or Sam or ________? >> (please direct to the person who posted yesterday on the talklist about >> webcat's having 2 versions of the same db in cache problem due to >> permissions improperly set) >> >> Hi . :-) I am the guy who had that problem once but was NOT the one >> who you apparently helped offlist to solve this. I posted yesterday >> saying I would ask for your permissions insight if it ever happened to >> me again, but why wait?! Please tell me what you have discovered >> about the possibility of unix (Linux only?) webcat holding 2+ versions >> of the same db in cache because of some improper permissions. I worked > > with the system admin to get the perms set the best we could figure out >> to make webcat work and provide as much security as possible... but >> maybe we have not done best?. Please share!! >> >> -John >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to >> >> >> ------------------------------------------------------------- >> This message is sent to you because you are subscribed to >> the mailing list . >> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to >> > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Clement Ross

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

(1998) Sorting error (1997) re: Large Database Options? (1999) Shopping Carts (2000) ShowIf & HideIf Question? (1998) Template Encryption (1998) WebCat2b13MacPlugIn - [showif][search][/showif] (1997) Big Databases (1997) Hiding HTML and breaking the page (1997) Webcat serving error page? (2000) [CART] inside a [LOOP] (1997) Webdna sends your serial number on Internet (2003) same product in cart (1997) setting cookies for another domain? (2002) 6.1 Patch - Form Data Back Button Issue (2006) [UPPERCASE] (1997) PCS Emailer's role ? (1997) NetForms for mail, sorry (1998) 2.0 Beta (1997) Close Databases Crash? (1998)