How to Set Umask for Apache on Amazon Linux 2 AMI

amazon-linux-2apache-2.4httpdsystemdumask

I want to set umask 0002 for Apache httpd so that certain files that it creates will be writable by other users.

The traditional solutions don't seem to work on Amazon Linux 2 AMI.

Best Answer

Create the file /etc/systemd/system/httpd.service.d/umask.conf with the contents

[Service]
UMask=0002

Then reload the systemd configuration and restart the httpd service.

You can do this from within a script using:

mkdir -p /etc/systemd/system/httpd.service.d
cat >> /etc/systemd/system/httpd.service.d/umask.conf << 'EOL'
[Service]
UMask=0002
EOL
systemctl daemon-reload
service httpd restart

Related Solutions

Ubuntu – Ways to set umask on Ubuntu for daemon processes

Create a .profile file in the daemon's home directory:

#!/bin/sh
umask 002

You can find the daemon's home directory by running:

getent passwd daemon | awk -F':' '{ print $6; }'

If that doesn't work, the only other solution I can think of would be to edit the /etc/init.d script.

SSH Umask – How to Setup SSH’s Umask for All Types of Connections

I can suggest trying 2 things:

pam_umask
LD_PRELOAD wrapper (self-written?)

Best Answer

Related Solutions

Ubuntu – Ways to set umask on Ubuntu for daemon processes

SSH Umask – How to Setup SSH’s Umask for All Types of Connections

Related Topic