How to check what user php is running as

Question

I need to detect if php is running as nobody  How do I do this    Are there any other names for  nobody    apache   Any others

User · Answer

add the file info php to the following directory  - your default http apache directory - normally  var www html  with the following contents    lt  php                                                                            phpinfo                                                                          gt      Then httpd apache restart the go to your default html directory  http   enter server here info php  would deliver the whole php pedigree

User · Answer

You can use these commands    lt   system  whoami     gt   or  lt   passthru  whoami     gt   or  lt   print exec  whoami     gt   or  lt   print shell exec  whoami     gt   Be aware  the get current user   returns the name of the owner of the current PHP script

User · Answer

I usually use   lt  php echo get current user      gt    I will be glad if it helped you

User · Answer

i would use   lsof -i lsof -i   less lsof -i   grep  http   any of these  You can type em in your ssh command line and you will see what user is listening what service   you can also go and check this file   more  etc apache2 envvars   and look for these lines   export APACHE RUN USER user-name export APACHE RUN GROUP group-name   to filter out envvars file data  you can use grep    more   etc apache2 envvars  grep APACHE RUN

User · Answer

user     SERVER  REMOTE USER      http   php net manual en reserved variables server php  Authenticated user

User · Answer

Kind of backward way  but without exec system   file put contents  testFile    test     user   fileowner  testFile    unlink  testFile      If you create a file  the owner will be the PHP user   This could also likely be run with any of the temporary file functions such as tempnam    which creates a random file in the temporary directory and returns the name of that file  If there are issues due to something like the permissions  open basedir or safe mode that prevent writing a file  typically  the temp directory will still be allowed

User · Answer

More details would be useful  but assuming it s a linux system  and assuming php is running under apache  it will run as what ever user apache runs as   An easy way to check   again  assuming some unix like environment   is to create a php file with    lt  php     print shell exec   whoami       gt    which will give you the user   For my AWS instance  I am getting apache as output when I run this script

User · Answer

Straight from the shell you can run   php -r  echo exec  whoami

User · Answer

lt  php echo exec  whoami      gt

User · Answer

SERVER  USER      SERVER  USERNAME

User · Answer

If available you can probe the current user account with posix geteuid and then get the user name with  posix getpwuid    username   posix getpwuid posix geteuid     name      If you are running in safe mode however  which is often the case when exec is disabled   then it s unlikely that your PHP process is running under anything but the default www-data or apache account

User · Answer

You can try using backticks like this   echo  whoami

User · Answer

lt  php phpinfo      gt    save as info php and  open info php in your browser  ctrl f then type any of these   APACHE RUN USER APACHE RUN GROUP user group   you can see the user and the group apache is running as

User · Answer

In my setup I want to check if the current process has permission to create folders  subfolders and files before I begin a process and suggest a solution if it looks like I can t   I wanted to run stat  lt file gt   on various things to ensure the permissions match those of the running process  I m using php-fpm so it varies depending on the pool   The posix based solution Mario gave above  seems perfect  however it seems the posix extension is --disabled so I couldn t do the above and as I want to compare the results with the response from running stat   running whoami in a separate shell isn t helpful either  I need the uid and gid not the username      However I found a useful hint  I could stat  proc self  and stat  proc self attr  and see the uid and gid of the file     Hope that helps someone else

User · Answer

exec  whoami   will do this   lt  php echo exec  whoami      gt

User · Answer

Proposal  A tad late  but even though the following is a work-around  it solves the requirement as this works just fine    lt       function get sys usr                  unique name   uniqid        not-so-unique id          native path      temp  unique name php            public path    http   example com temp  unique name php            php content     lt   echo get current user      gt             process usr    apache       fall-back          if  is readable    temp    amp  amp  is writable    temp                          file put contents  native path  php content                process usr   trim file get contents  public path                unlink  native path                      return  process usr              echo get sys usr        www-data   gt      Description  The code-highlighting above is not accurate  please copy  amp  paste in your favorite editor and view as PHP code  or save and test it yourself   As you probably know  get current user   returns the owner of the  current running script  - so if you did not  chown  a script on the server to the web-server-user it will most probably be  nobody   or if the developer-user exists on the same OS  it will rather display that username   To work around this  we create a file with the current running process  If you just require   this into the current running script  it will return the same as the parent-script as mentioned  so  we need to run it as a separate request to take effect    Process-flow  In order to make this effective  consider running a design pattern that incorporates  runtime-mode   so when the server is in  development-mode or test-mode  then only it could run this function and save its output somewhere in an include  -or just plain text or database  or whichever    Of course you can change some particulars of the code above as you wish to make it more dynamic  but the logic is as follows    define a unique reference to limit interference with other users define a local file-path for writing a temporary file define a public url path to run this file in its own process write the temporary php file that outputs the script owner name get the output of this script by making a request to it delete the file as it is no longer needed - or leave it if you want return the output of the request as return-value of the function

[php] How to check what user php is running as?

Examples related to php

Examples related to apache