Livecode Apache Hacks

Here we look at some hacks which you may wish to try, but that have security implications and should not be used in a production setup.

Here we look at giving your Livecode Apache CGI's the ability to modify HTML files, and access to shell commands such as git:

# Add www-data to group

Now I want www-data (Apache daemon) to have an access to this directory, so in my mind I am planning to add www-data to group devs.

However I fear that I would cause wreckage if I execute this:

usermod -a -G devs www-data

This won't break anything, but might cause a security issue, since anyone accessing the www-data account (php scripts, unpatched, hacked pages, etc.) will get read/write access to everything that the 'devs' group has.

"www-data" already has read access to that folder, try limiting the write access to just the files it really really needs to write to.

# See also - Apache Tweaks - Apache Permissions - Configure new git user - Link to GitHub with SSH Keys - Apache Web Directory Owners - Link to GitHub with SSH Keys