Changeset 855 for server/common


Ignore:
Timestamp:
Oct 28, 2008, 2:00:39 AM (15 years ago)
Author:
andersk
Message:
Make suexec log scripts without execute permission (the group x-bit,
which was copied from the original user x-bit by the AFS patch).
File:
1 edited

Legend:

Unmodified
Added
Removed
  • server/common/patches/httpd-suexec-scripts.patch

    r842 r855  
    259259         (gid != dir_info.st_gid) ||
    260260         (uid != prg_info.st_uid) ||
    261 @@ -574,12 +676,14 @@
     261@@ -574,14 +676,15 @@
    262262                 prg_info.st_uid, prg_info.st_gid);
    263263         exit(120);
     
    271271-    if (!(prg_info.st_mode & S_IXUSR)) {
    272272+    if (!is_static_extension(cmd) && !is_php_extension(cmd) &&
    273 +        !(prg_info.st_mode & S_IXUSR)) {
     273+        !(prg_info.st_mode & S_IXGRP)) {
    274274         log_err("file has no execute permission: (%s/%s)\n", cwd, cmd);
    275          exit(121);
    276      }
     275-        exit(121);
     276     }
     277 
     278 #ifdef AP_SUEXEC_UMASK
    277279@@ -606,6 +709,21 @@
    278280       exit(122);
Note: See TracChangeset for help on using the changeset viewer.