PHP exec() not working properly

php apache unix exec
23,319

Solution 1

I have found the issue - SELinux was blocking PHP from accessing certain functions. Putting SELinux into permissive mode has fixed the issues (although, I'd rather not have to leave SELinux in permissive mode; I'd rather find a way of allowing certain functions if I can).

Solution 2

The reason why you are not able to execute ls is because of permissions.

If you are running the web server as user A , then you can only ls only those directories which have permissions for user A.

You can either change the permission of the directory or you can change the user under which the server is running by changing the httpd.conf file(i am assuming that you are using apache).

If you are changing the permissions of the directory, then make sure that you change permissions of parent directories also.

To change the web server user, follow following steps:

Open the following file:

vi /etc/httpd/conf/httpd.conf

Search for 

User apache
Group apache

Change the user and group name. After changing the user and group, restart the server using following command.

/sbin/service httpd restart

Then you will be able to execute all commands which can be run by that user.

EDIT:

The 'User' should be a non-root user in httpd.conf. Apache by default doesnot serve pages when run as root. You have to set user as a non-root user or else you will get error. If you want to force apache to run as root, then you have to set a environment variable as below:

env CFLAGS=-DBIG_SECURITY_HOLE

Then you have to rebuild apache before you can run it as root.

Solution 3

I have a solution: command runs from console, but not from php via exec/system/passthru. The issue is the path to command. It works with the absolute path to command

So that: 

wkhtmltopdf "htm1Eufn7.htm" "pdfIZrNcb.pdf"

becomes:

/usr/local/bin/wkhtmltopdf "htm1Eufn7.htm" "pdfIZrNcb.pdf"

And now, it's works from php via exec Where command binary you can see via whereis wkhtmltopdf

Solution 4

Tore my hair out trying to work out why PHP exec works from command line but not from Apache. At the end, I found the following permissions:

***getsebool -a | grep httpd*** ----> 
    **httpd_setrlimit --> off
    httpd_ssi_exec --> off
    httpd_sys_script_anon_write --> off**

USE: setsebool -P httpd_ssi_exec 1

SEE: https://linux.die.net/man/8/httpd_selinux

Share:
23,319
MattS
Author by

MattS

Updated on September 30, 2020

Comments

  • MattS
    MattS over 3 years

    I am having difficulty with the PHP exec() function. It seems to not be calling certain functions. For instance, the code echo exec('ls'); produces no output whatsoever (it should, there are files in the directory). That main reason this is a problem for me is that I'm trying execute a .jar from a PHP exec() call.

    As far as I know I'm calling the java program properly, but I'm not getting any of the output. The .jar can be executed from the command line on the server. (For the record, it's an apache server).

    My php for the .jar execute looks like this:

    $output = array();
exec('java -jar testJava.jar', $output);
print_r($output);

    All I get for output from this exec() call is Array().

    I have had success with exec() executing 'whoami' and 'pwd'. I can't figure out why some functions are working and some aren't. I'm not the most experienced person with PHP either, so I'm not too sure how to diagnose the issue. Any and all help would be appreciated.

  • MattS
    MattS almost 12 years
    That didn't quite work - I followed your steps and got an error asking that I add a -DBIG_SECURITY_HOLE CFLAG to the env variables. I'm not too familiar with CFLAGs as they pertain to Apache.
  • AnonGeek
    AnonGeek almost 12 years
    @MattS I have edited my answer to explain why you are getting this error. My suggestion is that you run the apache as a non-root user instead of rebuilding apache.
  • MattS
    MattS almost 12 years
    I changed the user/group to be the administrator user (just below root), and it still didn't work.
  • cazort
    cazort over 2 years
    Try using the audit2allow -a command to analyze the log and show what permissions would need to be used.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

PHP exec/shell_exec/system not working through browser
How to get list of running php scripts using PHP exec()?
PHP: get_current_user() vs. exec('whoami')
PHP exec - check if enabled or disabled
WAMP "Unable to load dynamic library php_intl.dll"
Apache error - child pid 1789 exit signal Bus error (10)
Activation Curl on EasyPHP
How to isolate the HTTP headers/body from a PHP Sockets request
.htaccess in Subfolder not working
HTTPS giving 404 not found error