在LAMP環境中,測試一個簡單的PHP檔案上傳功能時,發現/var/log/apache2/中出現如下php警告:
[Tue Jan 31 09:40:27 2012] [error] [client ] PHP Warning: move_uploaded_file(/home/leotody/32883679.jpeg): failed to open stream: Permission denied in /var/www/upload_ on line 25, referer: http://localhost/
[Tue Jan 31 09:40:27 2012] [error] [client ] PHP Warning: move_uploaded_file(): Unable to move '/tmp/phps05ssU' to '/home/leotody/32883679.jpeg'in /var/www/upload_ on line 25, referer: http://localhost/
提示沒有訪問許可權,檔案上傳的程式碼如下:
if (file_exists("upload/" . $_FILES["file"]["name"]))
{
echo $_FILES["file"]["name"] . " already exists. ";
}
else
{
if(move_uploaded_file($_FILES["file"]["tmp_name"], "upload/".$_FILES["file"]["name"]))
{
echo "Stored in: " . "upload/" . $_FILES["file"]["name"];
}
else
{
echo "move error!";
}
}
頁面中顯示"move error!",說明move_uploaded_file()函式執行失敗。
通過查詢資料,發現網上有說是selinux啟動的`原因,檢查系統並未啟動selinux,檢視upload目錄預設許可權ls -ld upload,結果為755:
drwxr-xr-x 2 root root 4096 2012-01-31 10:59 upload
將upload目錄許可權改為777,sudo chmod 777 upload,再測試上傳功能成功。但這種修改許可權的方法並不安全。
故可以改upload目錄的擁有者為www-data(即apache),sudo chown -R www-data:www-data upload,然後再測試上傳功能成功。
drwxr-xr-x 2 www-data www-data 4096 2012-01-31 10:59 upload