maven-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Lukas Theussl (JIRA)" <j...@codehaus.org>
Subject [jira] Closed: (MSITE-141) Possible security hole when deploying site
Date Wed, 29 Jul 2009 14:23:58 GMT

     [ http://jira.codehaus.org/browse/MSITE-141?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Lukas Theussl closed MSITE-141.
-------------------------------

      Assignee: Lukas Theussl
    Resolution: Fixed

Done in [r798916|http://svn.apache.org/viewvc?view=rev&revision=798916]

> Possible security hole when deploying site
> ------------------------------------------
>
>                 Key: MSITE-141
>                 URL: http://jira.codehaus.org/browse/MSITE-141
>             Project: Maven 2.x Site Plugin
>          Issue Type: Bug
>          Components: site:deploy
>    Affects Versions: 2.0-beta-5
>         Environment: Linux gentoo 2.6.16 64bit, maven 2.0.2
>            Reporter: Martin Vysny
>            Assignee: Lukas Theussl
>            Priority: Critical
>             Fix For: 2.1
>
>
> When the site is deployed into a directory /foo/bar, the following command is issued
over a ssh:
> chmod -Rf g+w /foo/bar/
> it was intended to use g+r I presume? :-)

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message