Perfect Permissions for Joomla and Plesk

Fri, Apr 18, 2008

This post is a continuation (actually a better solution) from my previous post on Joomla Session Save Path

The solution is a slightly modified version from the original post found at rackerhacker.com

Change the umask in ‘/etc/proftpd.conf’ from ‘022′ to ‘002′.

Then, update the directory permissions by running the following at the command line:

cd /var/www/vhosts/[domain.com]
chown -R [username]:psacln httpdocs
chmod -R g+w httpdocs
find httpdocs -type d -exec chmod g+s {} \;

Add the ‘apache’ user to the ‘psacln’ group by editing ‘/etc/group’.

Change

psacln:x:2524:

psacln:x:2524:apache

For my server I also had to add psaftp,psaadm:

psacln:x:2524:apache,psaftp,psaadm

Joomla also complains about some PHP settings, sometimes including not being able to write to ‘/var/lib/php/session’. To fix the issues, make some adjustments to the ‘/var/www/vhosts/[domain]/conf/vhost.conf’ for the domain (you may have to create this file):

<Directory /var/www/vhosts/[domain]/httpdocs>
php_admin_flag magic_quotes_gpc on
php_admin_flag display_errors on
php_admin_value session.save_path /tmp
</Directory>

If the vhost.conf is brand new, then run:

/usr/local/psa/admin/bin/websrvmng -av

Make sure Apache runs with your new configuration:

# httpd -t (check your work)
# /etc/init.d/httpd reload (service httpd restart on my server)

Done! No more errors on the install screen and no more apache/ftpuser issues with uploading files.

Joomla, Plesk

This post was written by:

Dustin - who has written 25 posts on DustinsDesign.com.

Contact the author

3 Comments For This Post

Dustin Says:
April 19th, 2008 at 1:16 pm

For me the second part of this worked like a charm, but the first part caused me to loose ftp access on all domains on the server. yich. Probably an easy fix, but it is eluding me at the moment so I will move on to the other possible solution… My next post on this subject will be how mod_suphp works out.

Dustin Says:
April 21st, 2008 at 1:18 pm

UPDATE: Ftp issue resolved - it was a syntax issue with my proftpd.conf file. Running smoothly now.

Ville Says:
April 23rd, 2008 at 11:22 pm

OK this looks good but:
- Developer installs module at Joomla
- Now the permissions are not 664 anymore but 644 as Apache creates the file with umask 644
- Developer changes something on the module and wants to upload using ftp
-> as the file owner is apache and group is psacln, the developer cannot overwrite the file as only the owner has write permission (644).

I think Apache should need to be changed to umask the files so that group has write permission (664).

Any thoughts?

Dustin Says:
April 19th, 2008 at 1:16 pm
For me the second part of this worked like a charm, but the first part caused me to loose ftp access on all domains on the server. yich. Probably an easy fix, but it is eluding me at the moment so I will move on to the other possible solution… My next post on this subject will be how mod_suphp works out.
Dustin Says:
April 21st, 2008 at 1:18 pm
UPDATE: Ftp issue resolved - it was a syntax issue with my proftpd.conf file. Running smoothly now.
Ville Says:
April 23rd, 2008 at 11:22 pm
OK this looks good but:
- Developer installs module at Joomla
- Now the permissions are not 664 anymore but 644 as Apache creates the file with umask 644
- Developer changes something on the module and wants to upload using ftp
-> as the file owner is apache and group is psacln, the developer cannot overwrite the file as only the owner has write permission (644).

I think Apache should need to be changed to umask the files so that group has write permission (664).

Any thoughts?

DustinsDesign.com