View Issue Details

IDProjectCategoryView StatusLast Update
0000273SOGoBackend Generalpublic2009-12-09 16:34
Reportertokul Assigned Tofrancis  
PrioritynormalSeverityminorReproducibilityalways
Status resolvedResolutionfixed 
Product Versionnightly v2 
Fixed in Version1.2.0 
Summary0000273: Apache configuration depends on root directory permissions
Description

Apache/SOGO.conf and Apache/SOGo-debian.conf don't describe SOGo directory permissions and depend on loose permissions of <directory />.

If root directory permissions are strict, SOGo aliases are blocked.

How to reproduce it:

  1. Set <directory /> to Deny ALL. See Debian Sid /etc/apache2/conf.d/security for example
  2. Access SOGo login page.
TagsNo tags attached.

Activities

2009-12-04 07:13

 

SOGo-debian.conf.diff (640 bytes)   
Index: SOGo-debian.conf
===================================================================
--- SOGo-debian.conf	(revision 1510)
+++ SOGo-debian.conf	(working copy)
@@ -1,3 +1,14 @@
+# Adjust directory section according to your setup and web access restrictions
+#
+# Web users need permissions to access
+# /usr/lib/GNUstep/SOGo/WebServerResources/
+# /usr/lib/GNUstep/SOGo/*.SOGo/Resources/
+<directory /usr/lib/GNUstep/SOGo/>
+    AllowOverride None
+    Order deny,allow
+    Allow from all
+</directory>
+
 Alias /sogo.woa/WebServerResources/ \
         /usr/lib/GNUstep/SOGo/WebServerResources/
 Alias /SOGo.woa/WebServerResources/ \
SOGo-debian.conf.diff (640 bytes)   
francis

francis

2009-12-09 16:34

administrator   ~0000333

Committed. Thanks!

http://mtn.inverse.ca/revision/info/db370b54d1c04790d487307a6c2427a914aae37b

Issue History

Date Modified Username Field Change
2009-12-04 07:13 tokul New Issue
2009-12-04 07:13 tokul File Added: SOGo-debian.conf.diff
2009-12-09 16:34 francis Note Added: 0000333
2009-12-09 16:34 francis Status new => resolved
2009-12-09 16:34 francis Fixed in Version => 1.1.1
2009-12-09 16:34 francis Resolution open => fixed
2009-12-09 16:34 francis Assigned To => francis