ISPConfig3 devel
blame | history | patch | commit | commitdiff | ignore whitespace
tbrehm
2012-01-02 5e8cd98d1b79d0084d0e936573c731feb67bda01 
 server/plugins-available/apache2_plugin.inc.php


@@ -553,7 +553,7 @@






      //* If the security level is set to high


      if($this->action == 'insert' && $data['new']['type'] == 'vhost') {


      if(($this->action == 'insert' && $data['new']['type'] == 'vhost') or ($web_config['set_folder_permissions_on_update'] == 'y' && $data['new']['type'] == 'vhost')) {


         if($web_config['security_level'] == 20) {




            $this->_exec('chmod 751 '.escapeshellcmd($data['new']['document_root']));


@@ -585,8 +585,14 @@




            //* add the Apache user to the client group


            $app->system->add_user_to_group($groupname, escapeshellcmd($web_config['user']));




				


            //* Chown all default directories


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root']));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/cgi-bin'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/log'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/ssl'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/tmp'));


            $this->_exec('chown -R '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/web'));




            /*


            * Workaround for jailkit: If jailkit is enabled for the site, the 


@@ -605,11 +611,20 @@


         } else {




            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root']));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/*'));


            $this->_exec('chown root:root '.escapeshellcmd($data['new']['document_root']));




            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/cgi-bin'));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/log'));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/ssl'));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/web'));


				


            // make temp directory writable for Apache and the website users


            $this->_exec('chmod 777 '.escapeshellcmd($data['new']['document_root'].'/tmp'));


				


            $this->_exec('chown root:root '.escapeshellcmd($data['new']['document_root']));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/cgi-bin'));


            $this->_exec('chown root:root '.escapeshellcmd($data['new']['document_root'].'/log'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/tmp'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/ssl'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/web'));


         }


      }




@@ -637,7 +652,7 @@


         if($master_php_ini_path != '' && substr($master_php_ini_path,-7) == 'php.ini' && is_file($master_php_ini_path)) {


            $php_ini_content .= file_get_contents($master_php_ini_path)."\n";


         }


         $php_ini_content .= trim($data['new']['custom_php_ini']);


         $php_ini_content .= str_replace("\r",'',trim($data['new']['custom_php_ini']));


         file_put_contents($custom_php_ini_dir.'/php.ini',$php_ini_content);


      } else {


         $has_custom_php_ini = false;


@@ -730,7 +745,7 @@


                     'rewrite_target_ssl' => $rewrite_target_ssl);


               break;


            case '*':


               $rewrite_rules[] = array(   'rewrite_domain'    => $data['new']['domain'],


               $rewrite_rules[] = array(   'rewrite_domain'    => '(^|\.)'.$data['new']['domain'],


                  'rewrite_type'       => ($data['new']['redirect_type'] == 'no')?'':'['.$data['new']['redirect_type'].']',


                  'rewrite_target'    => $rewrite_target,


                  'rewrite_target_ssl' => $rewrite_target_ssl);


@@ -796,7 +811,7 @@


                           'rewrite_target_ssl' => $rewrite_target_ssl);


                     break;


                  case '*':


                     $rewrite_rules[] = array(   'rewrite_domain'    => $alias['domain'],


                     $rewrite_rules[] = array(   'rewrite_domain'    => '(^|\.)'.$alias['domain'],


                        'rewrite_type'       => ($alias['redirect_type'] == 'no')?'':'['.$alias['redirect_type'].']',


                        'rewrite_target'    => $rewrite_target,


                        'rewrite_target_ssl' => $rewrite_target_ssl);