One of the most common problems observed in the FusionPBX forum are permission issues. The balance you have to achieve though is security vs. usability.
By default, the Centos ISO comes with freeswitch having an owner of freeswitch and a group of freeswitch and fusionpbx has an owner of apache and a group of daemon. As a result there are problems of interoperability between the two that have to be solved by using chmod to set permissions for group and other and by using chgrp to change the group on some directories.
One solution to this dilemma is to set the owner and group on both to be the same as each other. Accordingly you might want to try this:
chown -R apache:apache /usr/local/freeswitch
chown -R apache:apache /var/www/fusionpbx
Keep the chmod as 755 on /usr/local/freeswitch and /var/www/fusionpbx. In fact you could even try 700 or 600 if you want.
CORRECTION: you can keep 755 on fusionpbx but you need 775 on /usr/local/freeswitch. You also need to edit /etc/group and change the line "apache:x:48:" to "apache:x:48:freeswitch,apache". With this change freeswitch is able to start without needing to be run by root.
Security experts might want to comment on why doing this would be a bad idea....?
NOTE: The instructions above assume that the owner of the fusionpbx directory on your server is apache. On ubuntu and other systems it might be www-data or something else. Take a look at the existing owner of this directory and that is the owner to make use of in the instructions above. It is basically your webserver's account.
No comments:
Post a Comment