<html>
  <head>
    <meta content="text/html; charset=utf-8" http-equiv="Content-Type">
  </head>
  <body bgcolor="#FFFFFF" text="#000000">
    <div class="moz-cite-prefix">Hallo Christian,<br>
      <br>
      hab ne Lösung, aber weiß nicht, wie das Sicherheitstechnisch
      aussieht. Kannst du mir da helfen?<br>
      <br>
      Wenn ich bei sudoers folgendes eintrage:<br>
      www-data ALL=(root) NOPASSWD: /usr/bin/python<br>
      <br>
      dann klappts.<br>
      <br>
      mach ich da ne Sicherheitslücke auf?<br>
      <br>
      Gruß<br>
      <br>
      Thomas<br>
      <br>
      <br>
      <br>
      Am 15.09.2016 um 07:47 schrieb Christian Schnellrieder:<br>
    </div>
    <blockquote
cite="mid:CAFse7xSFFVgHaZp-2=wn3Bey36Wtt-8Tyj93tnXkKuBVT=EdRw@mail.gmail.com"
      type="cite">
      <div dir="ltr">Hallo.
        <div><br>
        </div>
        <div>Das sieht aber nicht nach einem Apache Log aus.</div>
        <div>Die Logs (Error und das jeweils definierte für deinen host)
          findest du unter /var/log/apache</div>
        <div><br>
        </div>
        <div><br>
        </div>
        <div>Grüße</div>
      </div>
      <br>
      <div class="gmail_quote">
        <div dir="ltr"><a moz-do-not-send="true"
            href="mailto:Heine.thomas@online.de">Heine.thomas@online.de</a>
          <<a moz-do-not-send="true"
            href="mailto:Heine.thomas@online.de">Heine.thomas@online.de</a>>
          schrieb am Do., 15. Sep. 2016 um 05:55 Uhr:<br>
        </div>
        <blockquote class="gmail_quote" style="margin:0 0 0
          .8ex;border-left:1px #ccc solid;padding-left:1ex">
          <div bgcolor="#FFFFFF" text="#000000">
            <div>Hallo Christian,<br>
              <br>
              das steht im log:<br>
              Sep 15 05:44:29 xxxxxx sudo: pam_unix(sudo:auth):
              conversation failed<br>
              Sep 15 05:44:29 xxxxxx sudo: pam_unix(sudo:auth): auth
              could not identify password for [www-data]<br>
              Sep 15 05:44:29 xxxxxx sudo: www-data : user NOT in
              sudoers ; TTY=unknown ; PWD=Sep 15 05:44:29 xxxxxxx sudo:
              pam_unix(sudo:auth): conversation failed<br>
              Sep 15 05:44:29 VzOberhofen sudo: pam_unix(sudo:auth):
              auth could not identify password for [www-data]<br>
              Sep 15 05:44:29 VzOberhofen sudo: www-data : user NOT in
              sudoers ; TTY=unknown ; PWD=/var/www/<a
                moz-do-not-send="true"
                href="http://volkszaehler.org/htdocs" target="_blank">volkszaehler.org/htdocs</a>
              ; USER=root ; COMMAND=/bin/sh /home/pi/$<br>
              <br>
              <br>
              muss ich bei sudoers was eintragen?<br>
              <br>
              Gruß</div>
          </div>
          <div bgcolor="#FFFFFF" text="#000000">
            <div><br>
              Thomas</div>
          </div>
          <div bgcolor="#FFFFFF" text="#000000">
            <div><br>
              <br>
              Am 14.09.2016 um 22:05 schrieb Christian Schnellrieder:<br>
            </div>
          </div>
          <div bgcolor="#FFFFFF" text="#000000">
            <blockquote type="cite">
              <div dir="ltr">Das bedeutet das der 
                <div>user pi (owner): schreiben lesen ausführen darf</div>
                <div>die gruppe www-data: <span style="line-height:1.5"> </span><span
                    style="line-height:1.5">schreiben lesen ausführen
                    darf</span></div>
                <div><span style="line-height:1.5">alle anderen: </span><span
                    style="line-height:1.5"> </span><span
                    style="line-height:1.5">schreiben lesen ausführen
                    darf</span></div>
                <div><span style="line-height:1.5"><br>
                  </span></div>
                <div><span style="line-height:1.5">Also im Grunde sollte
                    es passen auch wenn die Rechte 777 nicht gerade der
                    Sicherheit zuträglich sind.</span></div>
                <div><span style="line-height:1.5"><br>
                  </span></div>
                <div><span style="line-height:1.5">Was sagt denn das
                    apache Log? </span></div>
                <div><span style="line-height:1.5"><br>
                  </span></div>
                <div><span style="line-height:1.5">Grüße</span></div>
              </div>
              <br>
              <div class="gmail_quote">
                <div dir="ltr"><a moz-do-not-send="true"
                    href="mailto:Heine.thomas@online.de" target="_blank">Heine.thomas@online.de</a>
                  <<a moz-do-not-send="true"
                    href="mailto:Heine.thomas@online.de" target="_blank">Heine.thomas@online.de</a>>
                  schrieb am Mi., 14. Sep. 2016 um 20:28 Uhr:<br>
                </div>
                <blockquote class="gmail_quote" style="margin:0 0 0
                  .8ex;border-left:1px #ccc solid;padding-left:1ex">
                  <div bgcolor="#FFFFFF" text="#000000">
                    <div>Hallo,<br>
                      <br>
                      Das sagt es:<br>
                      <br>
                      -rwxrwxrwx 1 pi   www-data    53 Sep 14 16:46
                      doorbell.php   <====<br>
                      -rw-r--r-- 1 root root     15086 Feb 17  2016
                      favicon.ico<br>
                      <br>
                      Und was bedeutet das?<br>
                      <br>
                      Gruß</div>
                  </div>
                  <div bgcolor="#FFFFFF" text="#000000">
                    <div><br>
                      <br>
                      Thomas</div>
                  </div>
                  <div bgcolor="#FFFFFF" text="#000000">
                    <div><br>
                      <br>
                      <br>
                      <br>
                      Am 14.09.2016 um 20:03 schrieb Christian
                      Schnellrieder:<br>
                    </div>
                  </div>
                  <div bgcolor="#FFFFFF" text="#000000">
                    <blockquote type="cite">
                      <div dir="ltr">Hallo. 
                        <div><br>
                        </div>
                        <div>Das findest du in deiner Apache config. </div>
                        <div><br>
                        </div>
                        <div>
                          <div>root@raspberrypi:~# cat
                            /etc/apache2/envvars | grep USER</div>
                          <div>export APACHE_RUN_USER=www-data</div>
                        </div>
                        <div><br>
                        </div>
                        <div><br>
                        </div>
                        <div>Was sagst denn ein ls -l zu deinem Script?</div>
                        <div><br>
                        </div>
                        <div><br>
                        </div>
                        <div>Grüße</div>
                      </div>
                      <br>
                      <div class="gmail_quote">
                        <div dir="ltr"><a moz-do-not-send="true"
                            href="mailto:Heine.thomas@online.de"
                            target="_blank">Heine.thomas@online.de</a>
                          <<a moz-do-not-send="true"
                            href="mailto:Heine.thomas@online.de"
                            target="_blank">Heine.thomas@online.de</a>>
                          schrieb am Mi., 14. Sep. 2016 um 19:28 Uhr:<br>
                        </div>
                        <blockquote class="gmail_quote" style="margin:0
                          0 0 .8ex;border-left:1px #ccc
                          solid;padding-left:1ex">
                          <div bgcolor="#FFFFFF" text="#000000">
                            <div>Hallo,<br>
                              <br>
                              hatte sie auf <br>
                              <span></span><span>www</span><span>-</span><span>data</span><span>.</span><span>www</span><span>-</span><span>data</span><span>
                                <br>
                                gesetzt</span><span></span><br>
                              <br>
                              auf wen müsste ich sie wie setzen?<br>
                              <br>
                              Gruß Thomas</div>
                          </div>
                          <div bgcolor="#FFFFFF" text="#000000">
                            <div><br>
                              <br>
                              Am 14.09.2016 um 19:19 schrieb Christian
                              Schnellrieder:<br>
                            </div>
                          </div>
                          <div bgcolor="#FFFFFF" text="#000000">
                            <blockquote type="cite">
                              <div dir="ltr">Wie sind den die
                                Dateirechte eingestellt? Wer ist der
                                owner?</div>
                              <br>
                              <div class="gmail_quote">
                                <div dir="ltr"><a moz-do-not-send="true"
                                    href="mailto:Heine.thomas@online.de"
                                    target="_blank">Heine.thomas@online.de</a>
                                  <<a moz-do-not-send="true"
                                    href="mailto:Heine.thomas@online.de"
                                    target="_blank">Heine.thomas@online.de</a>>
                                  schrieb am Mi., 14. Sep. 2016 um
                                  18:09 Uhr:<br>
                                </div>
                                <blockquote class="gmail_quote"
                                  style="margin:0 0 0
                                  .8ex;border-left:1px #ccc
                                  solid;padding-left:1ex">
                                  <div bgcolor="#FFFFFF" text="#000000">
                                    <div>Hallo Andreas,<br>
                                      <br>
                                      hab grade vieles Probiert. Kann
                                      die .php-Datei finden, wenn sie im
                                      Ordner <br>
                                      /var/www/<a moz-do-not-send="true"
href="http://volkszaehler.org/htdocs" target="_blank">volkszaehler.org/htdocs</a><br>
                                      liegt.<br>
                                      Sonst finde ich sie garnicht.<br>
                                      Ich kann das Skript jedoch nicht
                                      ausführen. Da fehlt wohl noch
                                      irgendwie ne Berechtigung<br>
                                      Muss ich da noch wo was eintragen?<br>
                                      <br>
                                      Danke</div>
                                  </div>
                                  <div bgcolor="#FFFFFF" text="#000000">
                                    <div><br>
                                      <br>
                                      Thomas</div>
                                  </div>
                                  <div bgcolor="#FFFFFF" text="#000000">
                                    <div><br>
                                      <br>
                                      Am 14.09.2016 um 18:06 schrieb
                                      Andreas Götz:<br>
                                    </div>
                                  </div>
                                  <div bgcolor="#FFFFFF" text="#000000">
                                    <blockquote type="cite">
                                      <div>
                                        <div style="direction:inherit">Dann
                                          sollte es möglich sein unter
                                          /var/www neue Ordner, Symlinks
                                          oder Dateien abzulegen die Du
                                          dann unter <a
                                            moz-do-not-send="true"
                                            href="http://localhost"
                                            target="_blank">http://localhost</a>
                                          findest. </div>
                                        <br>
                                        Viele Grüße,
                                        <div>Andreas</div>
                                      </div>
                                      <div><br>
                                        Am 14.09.2016 um 17:33 schrieb "<a
                                          moz-do-not-send="true"
                                          href="mailto:Heine.thomas@online.de"
                                          target="_blank">Heine.thomas@online.de</a>"
                                        <<a moz-do-not-send="true"
                                          href="mailto:Heine.thomas@online.de"
                                          target="_blank">Heine.thomas@online.de</a>>:<br>
                                        <br>
                                      </div>
                                      <blockquote type="cite">
                                        <div>
                                          <div style="direction:inherit">Hallo
                                            Andreas,<br>
                                            <br>
                                            das steht drin:<br>
                                            <br>
                                            <Directory /><br>
                                                    Options
                                            FollowSymLinks<br>
                                                    AllowOverride None<br>
                                                    Require all denied<br>
                                            </Directory><br>
                                            <br>
                                            <Directory /usr/share><br>
                                                    AllowOverride None<br>
                                                    Require all granted<br>
                                            </Directory><br>
                                            <br>
                                            <Directory /var/www/><br>
                                                    Options Indexes
                                            FollowSymLinks<br>
                                                    AllowOverride None<br>
                                                    Require all granted<br>
                                            </Directory><br>
                                            <br>
                                            AccessFileName .htaccess<br>
                                            <br>
                                            <FilesMatch "^\.ht"><br>
                                                    Require all denied<br>
                                            </FilesMatch><br>
                                            <br>
                                            <br>
                                            <br>
                                            <br>
                                            <br>
                                            wenn ich die Datei ins
                                            /var/www/ lege, kann ich sie
                                            aber auch nicht starten.<br>
                                            Brauch ich da bestimmte
                                            Zugriffsrechte?<br>
                                            <br>
                                            Gruß<br>
                                            Thomas<br>
                                            <br>
                                            <br>
                                            Am 14.09.2016 um 17:28
                                            schrieb Andreas Götz:<br>
                                            Ich verstehe Deine Antwort
                                            nicht- was steht denn nun in
                                            der Apache Konfiguration?</div>
                                          <blockquote type="cite">
                                            <div
                                              style="direction:inherit"><br>
                                            </div>
                                            <div
                                              style="direction:inherit">Viele
                                              Grüße, Andreas </div>
                                            <div><br>
                                              Am 14.09.2016 um 17:03
                                              schrieb "<a
                                                moz-do-not-send="true"
                                                href="mailto:Heine.thomas@online.de"
                                                target="_blank">Heine.thomas@online.de</a>"
                                              <<a
                                                moz-do-not-send="true"
                                                href="mailto:Heine.thomas@online.de"
                                                target="_blank">Heine.thomas@online.de</a>>:<br>
                                              <br>
                                            </div>
                                            <blockquote type="cite">
                                              <div>
                                                <div>Hallo,<br>
                                                  <br>
                                                  Das steht in der
                                                  Datei:<br>
                                                  <br>
                                                  <br>
                                                  # Alias for phpMyAdmin
                                                  directory<br>
                                                  alias.url += (<br>
                                                          "/phpmyadmin"
                                                  =>
                                                  "/usr/share/phpmyadmin",<br>
                                                  )<br>
                                                  <br>
                                                  # Disallow access to
                                                  libraries<br>
                                                  $HTTP["url"] =~
                                                  "^/phpmyadmin/libraries"
                                                  {<br>
                                                      url.access-deny =
                                                  ( "" )<br>
                                                  }<br>
                                                  $HTTP["url"] =~
                                                  "^/phpmyadmin/setup/lib"
                                                  {<br>
                                                      url.access-deny =
                                                  ( "" )<br>
                                                  }<br>
                                                  <br>
                                                  # Limit access to
                                                  setup script<br>
                                                  $HTTP["url"] =~
                                                  "^/phpmyadmin/setup" {<br>
                                                          auth.backend =
                                                  "htpasswd"<br>
                                                         
                                                  auth.backend.htpasswd.userfile
                                                  =
                                                  "/etc/phpmyadmin/htpasswd.setup"<br>
                                                          auth.require =
                                                  (<br>
                                                                  "/"
                                                  => (<br>
                        "method" => "basic",<br>
                        "realm" => "phpMyAdmin Setup",<br>
                        "require" => "valid-user"<br>
                                                                  )<br>
                                                          )<br>
                                                  }<br>
                                                  <br>
                                                  <br>
                                                  Kann aber damit nichts
                                                  anfangen.<br>
                                                  <br>
                                                  In welchen Ordner muss
                                                  ich die Datei
                                                  reinpacken, dass ich
                                                  das Script aufrufen
                                                  kann?<br>
                                                  <br>
                                                  Danke Gruß<br>
                                                  Thomas<br>
                                                  <br>
                                                  <br>
                                                  <br>
                                                  <br>
                                                  <br>
                                                  Am 14.09.2016 um 16:35
                                                  schrieb Andreas Götz:<br>
                                                </div>
                                                <blockquote type="cite">
                                                  <div
                                                    style="direction:inherit">Schau
                                                    doch mal in die
                                                    Apache Config-
                                                    httpd.conf und die
                                                    vhosts. Da werden
                                                    sich die
                                                    DocumentRoot Ordner
                                                    finden.</div>
                                                  <div
                                                    style="direction:inherit"><br>
                                                  </div>
                                                  <div
                                                    style="direction:inherit">Viele
                                                    Grüße, Andreas </div>
                                                  <div><br>
                                                    Am 14.09.2016 um
                                                    15:29 schrieb "<a
                                                      moz-do-not-send="true"
href="mailto:Heine.thomas@online.de" target="_blank">Heine.thomas@online.de</a>"
                                                    <<a
                                                      moz-do-not-send="true"
href="mailto:Heine.thomas@online.de" target="_blank">Heine.thomas@online.de</a>>:<br>
                                                    <br>
                                                  </div>
                                                  <blockquote
                                                    type="cite">
                                                    <div><span>Hallo,</span><br>
                                                      <span></span><br>
                                                      <span>ich würde
                                                        gerne über´s web
                                                        auf dem Raspi
                                                        (VZ-Image) ein
                                                        PHP-Script
                                                        aufrufen. In
                                                        welchem Ordner
                                                        muss es liegen,
                                                        dass ich drauf
                                                        zugreifen kann?</span><br>
                                                      <span>Im Ordner
                                                        /var/www/html
                                                        klappts nicht.</span><br>
                                                      <span>Bei meinem
                                                        zweiten Raspi
                                                        (Jessie light
                                                        Image) klappts
                                                        auf dem Ordner.</span><br>
                                                      <span></span><br>
                                                      <span>Was mach ich
                                                        falsch?</span><br>
                                                      <span></span><br>
                                                      <span></span><br>
                                                      <span>Danke Gruß</span><br>
                                                      <span>Thomas</span><br>
                                                      <span></span><br>
                                                    </div>
                                                  </blockquote>
                                                </blockquote>
                                                <p><br>
                                                </p>
                                              </div>
                                            </blockquote>
                                          </blockquote>
                                          <p><br>
                                          </p>
                                        </div>
                                      </blockquote>
                                    </blockquote>
                                    <p><br>
                                    </p>
                                  </div>
                                </blockquote>
                              </div>
                              <div dir="ltr">-- <br>
                              </div>
                              <div data-smartmail="gmail_signature">
                                <p dir="ltr">Von meinem Smartphone
                                  versendet</p>
                              </div>
                            </blockquote>
                            <p><br>
                            </p>
                          </div>
                        </blockquote>
                      </div>
                      <div dir="ltr">-- <br>
                      </div>
                      <div data-smartmail="gmail_signature">
                        <p dir="ltr">Von meinem Smartphone versendet</p>
                      </div>
                    </blockquote>
                    <p><br>
                    </p>
                  </div>
                </blockquote>
              </div>
              <div dir="ltr">-- <br>
              </div>
              <div data-smartmail="gmail_signature">
                <p dir="ltr">Von meinem Smartphone versendet</p>
              </div>
            </blockquote>
            <p><br>
            </p>
          </div>
        </blockquote>
      </div>
      <div dir="ltr">-- <br>
      </div>
      <div data-smartmail="gmail_signature">
        <p dir="ltr">Von meinem Smartphone versendet</p>
      </div>
    </blockquote>
    <p><br>
    </p>
  </body>
</html>