Changeset 944
- Timestamp:
- Jan 17, 2009, 4:38:03 PM (16 years ago)
- Location:
- server/common
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
server/common/oursrc/execsys/upd-execsys
r617 r944 64 64 xhtml 65 65 svg 66 xaml 67 xap 66 68 ); 67 69 -
server/common/patches/httpd-suexec-scripts.patch
r908 r944 73 73 74 74 /* variable name is */ 75 @@ -245,9 +250,6 5@@75 @@ -245,9 +250,67 @@ 76 76 environ = cleanenv; 77 77 } … … 111 111 + "xhtml", 112 112 + "svg", 113 + "xaml", 114 + "xap", 113 115 + NULL 114 116 +}; … … 139 141 gid_t gid; /* target group placeholder */ 140 142 char *target_uname; /* target user name */ 141 @@ -350,6 +40 4,20 @@143 @@ -350,6 +406,20 @@ 142 144 #endif /*_OSD_POSIX*/ 143 145 … … 160 162 * or attempts to back up out of the current directory, 161 163 * to protect against attacks. If any are 162 @@ -371,6 +4 39,7 @@164 @@ -371,6 +441,7 @@ 163 165 userdir = 1; 164 166 } … … 168 170 * Error out if the target username is invalid. 169 171 */ 170 @@ -450,7 +5 19,7 @@172 @@ -450,7 +521,7 @@ 171 173 * Error out if attempt is made to execute as root or as 172 174 * a UID less than AP_UID_MIN. Tsk tsk. … … 177 179 exit(107); 178 180 } 179 @@ -482,6 +55 1,21 @@181 @@ -482,6 +553,21 @@ 180 182 log_err("failed to setuid (%ld: %s)\n", uid, cmd); 181 183 exit(110); … … 199 201 /* 200 202 * Get the current working directory, as well as the proper 201 @@ -504,6 +58 6,21 @@203 @@ -504,6 +588,21 @@ 202 204 log_err("cannot get docroot information (%s)\n", target_homedir); 203 205 exit(112); … … 221 223 else { 222 224 if (((chdir(AP_DOC_ROOT)) != 0) || 223 @@ -530,15 +62 7,17 @@225 @@ -530,15 +629,17 @@ 224 226 /* 225 227 * Error out if cwd is writable by others. … … 240 242 exit(117); 241 243 } 242 @@ -546,10 +64 5,12 @@244 @@ -546,10 +647,12 @@ 243 245 /* 244 246 * Error out if the program is writable by others. … … 253 255 /* 254 256 * Error out if the file is setuid or setgid. 255 @@ -563,6 +66 4,7 @@257 @@ -563,6 +666,7 @@ 256 258 * Error out if the target name/group is different from 257 259 * the name/group of the cwd or the program. … … 261 263 (gid != dir_info.st_gid) || 262 264 (uid != prg_info.st_uid) || 263 @@ -574,12 +67 6,14 @@265 @@ -574,12 +678,14 @@ 264 266 prg_info.st_uid, prg_info.st_gid); 265 267 exit(120); … … 277 279 exit(121); 278 280 } 279 @@ -606,6 +7 09,21 @@281 @@ -606,6 +711,21 @@ 280 282 exit(122); 281 283 }
Note: See TracChangeset
for help on using the changeset viewer.