httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 56252] New: make install as privileged user creates files not owned by root
Date Wed, 12 Mar 2014 18:22:53 GMT

            Bug ID: 56252
           Summary: make install as privileged user creates files not
                    owned by root
           Product: Apache httpd-2
           Version: 2.4.7
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: Build

When building apache from sources I perform the following commands as a
non-privileged user:

./configure --with-included-apr


For the actual install into my PREFIX (/usr/local/apache2) I execute a
privileged command of:

sudo make install

This results in binaries, files, and directories that are NOT owned by root as
one might expect.

Some example files (all not owned by root):



Files inside  /usr/local/apache2/icons/


Suggestion 1:

Modify the build scripts so when running make install any files or directories
copied/created have the ownership and group membership set to the effective uid
running the make install.

Suggestion 2:

At the end of make install echo a comment to remind the admin to check the
permissions of all the files and directories in PREFIX or wherever they
installed for secure values.

Suggestion 3:

Consider automatically setting the file and directory mode to be more
restrictive (e.g. chmod -R o-rwx PREFIX) after the make install.

Another option would be to provide a script or another make command that would
optionally set locked down secure ownership and permissions.  "make install
--secure-permissions" or something similar perhaps.

You are receiving this mail because:
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message