Backup symlink folder permissions wrong
I am unable to change into the /backup folder when connecting via FTP to a site.
Running ISPConfig 220.127.116.11
WinSCP gives error: Can't change directory to backup: Permission Denied.
Directory listing and permissions:
Tried the following command, but no difference, still permission denied:
I can access the 'log' directory fine via FTP (with WinSCP)
It appears the /var/backup folder is set to chmod 750
Changing this to 755 allows backups to be read: (even with root.root owner of backup folder symlink)
The permissions has been changed in 18.104.22.168 so that this sould not happen anymore. Maybe the servers weher originally installed with a version < 22.214.171.124, as this is onyl setup during initial install. Please report this to the bugtracker, I will check that then.
This problem is happening again, and is happening every day.
Originally multiple servers were setup with version 126.96.36.199, or the version before.
Now they are all on 188.8.131.52
Users with websites on any server are unable to FTP into the /backup folder on each site (symlinked to /var/backup/<website>), getting permission denied error.
On all our servers, the /var/backup currently has these permissions:
drwxr-x--- 170 root root 4096 Nov 27 00:34 backup
To get FTP access working again to the backup folder, I have to do this on each server:
chmod 755 /var/backup
And appears each night the permissions are reverted back?
UPDATE - Ok I have found there is now a Server Config setting for:
"Backup dir. readable for website FTP users."
I have selected this option for each server, and hope this solves the problem.
As it appears on line 484 of the daily cron script is changing the permissions to 750 (/usr/local/ispconfig/server/cron_daily.php)
I'm new here but would it not rewrite 750 at line 484 on cron_daily.php file and check the option "Backup dir. Readable website for FTP users." is checked in "System-> Server Config" "Server tab" the last checkbox.
I thought I had the same problem and I just searched the php code and it seems to me that this is what the true condition.
This option was perhaps not in previous versions.
It is unfortunate that the customer sees the directory if it has no right to read, it is confusing.
I would be fixed tomorrow, but I do not think too much wrong.
Sorry for my English. :(
The FTP directory is always readable for shell users, thats why the directory is there. So enabling it for FTP users was well is just a optional feature.
|All times are GMT +2. The time now is 08:23.|
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.