ISPConfig3 devel
blame | history | patch | commit | commitdiff | ignore whitespace
tbrehm
2012-01-02 5e8cd98d1b79d0084d0e936573c731feb67bda01 
 server/plugins-available/apache2_plugin.inc.php


@@ -553,7 +553,7 @@






      //* If the security level is set to high


      if($this->action == 'insert' && $data['new']['type'] == 'vhost') {


      if(($this->action == 'insert' && $data['new']['type'] == 'vhost') or ($web_config['set_folder_permissions_on_update'] == 'y' && $data['new']['type'] == 'vhost')) {


         if($web_config['security_level'] == 20) {




            $this->_exec('chmod 751 '.escapeshellcmd($data['new']['document_root']));


@@ -585,8 +585,14 @@




            //* add the Apache user to the client group


            $app->system->add_user_to_group($groupname, escapeshellcmd($web_config['user']));




				


            //* Chown all default directories


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root']));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/cgi-bin'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/log'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/ssl'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/tmp'));


            $this->_exec('chown -R '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/web'));




            /*


            * Workaround for jailkit: If jailkit is enabled for the site, the 


@@ -605,11 +611,20 @@


         } else {




            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root']));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/*'));


            $this->_exec('chown root:root '.escapeshellcmd($data['new']['document_root']));




            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/cgi-bin'));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/log'));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/ssl'));


            $this->_exec('chmod 755 '.escapeshellcmd($data['new']['document_root'].'/web'));


				


            // make temp directory writable for Apache and the website users


            $this->_exec('chmod 777 '.escapeshellcmd($data['new']['document_root'].'/tmp'));


				


            $this->_exec('chown root:root '.escapeshellcmd($data['new']['document_root']));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/cgi-bin'));


            $this->_exec('chown root:root '.escapeshellcmd($data['new']['document_root'].'/log'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/tmp'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/ssl'));


            $this->_exec('chown '.$username.':'.$groupname.' '.escapeshellcmd($data['new']['document_root'].'/web'));


         }


      }