httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Marc Slemko <>
Subject checking logfile directory permissions
Date Wed, 19 Feb 1997 18:58:58 GMT
I still think a check should be added to wherever Apache opens files for
writing as root that:

	- the directory is owned by root
	- it is not group writable
	- it is not world writable
	- the inode of the dir is the same before and after the open

NCSA implements LogDirGroupWriteOk and LogDirOtherWriteOk to allow the
middle two to be overridden.  NCSA doesn't check the first, but does check
the last.  

I would like to implement something similar for Apache, perhaps using the
same directives as NCSA perhaps not.  In any case, one more should be
there for the owned by root check.

I hope to have an implementation done today.  Is there any support for
trying to get this into the next beta?

View raw message