#1  
Old 19th May 2008, 13:26
vogelor vogelor is offline
ISPConfig Developer
 
Join Date: Jan 2007
Location: Wernau, Germany
Posts: 219
Thanks: 42
Thanked 34 Times in 24 Posts
Talking flaw in suphp.conf

i think, there are 2 flaws in suphp.conf

1) the loglevel is set to info. This means every page, suphp "opens" for the apache is added th the log-file. if a admin didn't realise (and change) it, the log is very fast growing.
i think, it is better to change

Code:
loglevel=info
to

Code:
loglevel=warn
the next flaw is:

the security options are:
file_group_writeable=true
file_others_writeable=false
dir_group_writeable=true
dir_others_writeable=false

but the umask is set to 0077 this means, by every creation of a new dir, others writeable is set to ON and so suphp stops executing the php file with the error "dir is writeable by others".
To avoid this error, we have to change

Code:
umask=0077
to

Code:
umask=0022
can anyone with write-access to the source-code please change this?


Olli
__________________
Der neue Luxus heißt Zeit, nicht Geld!

Firma : http://www.muv.com, http://www.computerandservice.de
Privat : http://www.vogelor.de

Last edited by vogelor; 14th July 2008 at 08:37.
Reply With Quote
The Following 2 Users Say Thank You to vogelor For This Useful Post:
Feanwulf (10th June 2008), torusturtle (4th July 2008)
Sponsored Links
  #2  
Old 20th May 2008, 10:34
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 36,046
Thanks: 826
Thanked 5,388 Times in 4,233 Posts
Default

Thanks, I added it to the bugtracker.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 20th May 2008, 10:46
vogelor vogelor is offline
ISPConfig Developer
 
Join Date: Jan 2007
Location: Wernau, Germany
Posts: 219
Thanks: 42
Thanked 34 Times in 24 Posts
Angry aaargh!

aaaargh!
i always forgot that there is a bugtracker!
how can i access the bug tracker?
__________________
Der neue Luxus heißt Zeit, nicht Geld!

Firma : http://www.muv.com, http://www.computerandservice.de
Privat : http://www.vogelor.de
Reply With Quote
  #4  
Old 20th May 2008, 10:53
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 36,046
Thanks: 826
Thanked 5,388 Times in 4,233 Posts
Default

The bugtracker is here:

http://bugtracker.ispconfig.org

after you signed up for a account, please send me a pm or email so that I can add your account to the developers group.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
The Following User Says Thank You to till For This Useful Post:
vogelor (20th May 2008)
  #5  
Old 2nd July 2008, 17:59
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,741 Times in 2,575 Posts
Default

I've just fixed this.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
The Following User Says Thank You to falko For This Useful Post:
torusturtle (4th July 2008)
  #6  
Old 13th July 2008, 20:17
misterm misterm is offline
Senior Member
 
Join Date: Aug 2005
Posts: 523
Thanks: 15
Thanked 7 Times in 6 Posts
Question have an error in my logs

Hello with all When I want to activate this:

Quote:
oglevel=warn
J' have an error in my logs:

Quote:
ParsingException in Configuration.cpp:163: Unknown option "oglevel" in section [global]
Premature end of script headers: index.php
Version of suphp 0.6.3

MM
__________________
ISPConfig, the panel fantastic , http://www.ispconfig.be/forums/
http://www.ispconfig.be/
Reply With Quote
  #7  
Old 14th July 2008, 08:36
vogelor vogelor is offline
ISPConfig Developer
 
Join Date: Jan 2007
Location: Wernau, Germany
Posts: 219
Thanks: 42
Thanked 34 Times in 24 Posts
Default

SORRY!
i lost a char. the right spelling was

loglevel=warn

and not
oglevel=warn
__________________
Der neue Luxus heißt Zeit, nicht Geld!

Firma : http://www.muv.com, http://www.computerandservice.de
Privat : http://www.vogelor.de

Last edited by vogelor; 14th July 2008 at 08:40.
Reply With Quote
  #8  
Old 14th July 2008, 09:13
misterm misterm is offline
Senior Member
 
Join Date: Aug 2005
Posts: 523
Thanks: 15
Thanked 7 Times in 6 Posts
Wink No the concern

Hello, a thing also, how one makes to have the file Web in permission chmod " 0777" , it there with means or not

MM
__________________
ISPConfig, the panel fantastic , http://www.ispconfig.be/forums/
http://www.ispconfig.be/
Reply With Quote
  #9  
Old 14th July 2008, 09:39
vogelor vogelor is offline
ISPConfig Developer
 
Join Date: Jan 2007
Location: Wernau, Germany
Posts: 219
Thanks: 42
Thanked 34 Times in 24 Posts
 
Default

Quote:
Originally Posted by misterm View Post
Hello, a thing also, how one makes to have the file Web in permission chmod " 0777" , it there with means or not

MM
sorry, i don't understand your question. can you please write it in other words
__________________
Der neue Luxus heißt Zeit, nicht Geld!

Firma : http://www.muv.com, http://www.computerandservice.de
Privat : http://www.vogelor.de
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
little flaw in create_chroot_env vogelor Developers' Forum 4 23rd June 2008 11:49
Debian openssl random number generator critical security flaw Leszek Smalltalk 3 18th May 2008 16:33
little flaw in create_chroot_env.sh vogelor Feature Requests 0 4th May 2007 09:20


All times are GMT +2. The time now is 12:17.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.