From ca8191e9a87c74d6aa3e86cf73b464f7f74644fa Mon Sep 17 00:00:00 2001
From: tbrehm <t.brehm@ispconfig.org>
Date: Mon, 05 Oct 2009 11:34:02 -0400
Subject: [PATCH] Fixed: FS#896 - Error.log of website must be accessible by ftp user

---
 server/plugins-available/apache2_plugin.inc.php |   26 +++++++++++++++++---------
 1 files changed, 17 insertions(+), 9 deletions(-)

diff --git a/server/plugins-available/apache2_plugin.inc.php b/server/plugins-available/apache2_plugin.inc.php
index 4014f2a..a07e77e 100644
--- a/server/plugins-available/apache2_plugin.inc.php
+++ b/server/plugins-available/apache2_plugin.inc.php
@@ -236,8 +236,9 @@
 		$web_config = $app->getconf->get_server_config($conf["server_id"], 'web');
 		
 		//* Check if this is a chrooted setup
-		if($web_config['website_basedir'] != '' && @is_file($web_config['/var/www'].'/etc/passwd')) {
+		if($web_config['website_basedir'] != '' && @is_file($web_config['website_basedir'].'/etc/passwd')) {
 			$apache_chrooted = true;
+			$app->log("Info: Apache is chrooted.",LOGLEVEL_DEBUG);
 		} else {
 			$apache_chrooted = false;
 		}
@@ -299,7 +300,7 @@
 			$command .= ' '.escapeshellcmd($data["new"]["system_user"]);
 			exec($command);
 			
-			if($apache_chrooted) exec("chroot ".escapeshellcmd($web_config['website_basedir'])." ".$command);
+			if($apache_chrooted) $this->_exec("chroot ".escapeshellcmd($web_config['website_basedir'])." ".$command);
 			
 			
 		}
@@ -445,14 +446,14 @@
 		$groupname = escapeshellcmd($data["new"]["system_group"]);
 		if($data["new"]["system_group"] != '' && !$app->system->is_group($data["new"]["system_group"])) {
 			exec("groupadd $groupname");
-			if($apache_chrooted) exec("chroot ".escapeshellcmd($web_config['website_basedir'])." groupadd $groupname");
+			if($apache_chrooted) $this->_exec("chroot ".escapeshellcmd($web_config['website_basedir'])." groupadd $groupname");
 			$app->log("Adding the group: $groupname",LOGLEVEL_DEBUG);
 		}
 		
 		$username = escapeshellcmd($data["new"]["system_user"]);
 		if($data["new"]["system_user"] != '' && !$app->system->is_user($data["new"]["system_user"])) {
 			exec("useradd -d ".escapeshellcmd($data["new"]["document_root"])." -g $groupname -G sshusers $username -s /bin/false");
-			if($apache_chrooted) exec("chroot ".escapeshellcmd($web_config['website_basedir'])." "."useradd -d ".escapeshellcmd($data["new"]["document_root"])." -g $groupname -G sshusers $username -s /bin/false");
+			if($apache_chrooted) $this->_exec("chroot ".escapeshellcmd($web_config['website_basedir'])." "."useradd -d ".escapeshellcmd($data["new"]["document_root"])." -g $groupname -G sshusers $username -s /bin/false");
 			$app->log("Adding the user: $username",LOGLEVEL_DEBUG);
 		}
 		
@@ -498,7 +499,7 @@
 			
 			//* if we have a chrooted apache enviroment
 			if($apache_chrooted) {
-				exec("chroot ".escapeshellcmd($web_config['website_basedir'])." ".$command);
+				$this->_exec("chroot ".escapeshellcmd($web_config['website_basedir'])." ".$command);
 				
 				//* add the apache user to the client group in the chroot enviroment
 				$tmp_groupfile = $app->system->server_conf["group_datei"];
@@ -536,6 +537,10 @@
 			// make temp direcory writable for the apache user and the website user
 			$this->_exec("chmod 777 ".escapeshellcmd($data["new"]["document_root"]."/tmp"));
 		}
+		
+		// Change the owner of the error log to the owner of the website
+		if(!@is_file($data["new"]["document_root"]."/log/error.log")) exec('touch '.escapeshellcmd($data["new"]["document_root"])."/log/error.log");
+		$this->_exec("chown $username:$groupname ".escapeshellcmd($data["new"]["document_root"])."/log/error.log");
 		
 		
 		// Create the vhost config file
@@ -814,9 +819,12 @@
 		}
 		
 		
-		
-		// request a httpd reload when all records have been processed
-		$app->services->restartServiceDelayed('httpd','reload');
+		if($apache_chrooted) {
+			$app->services->restartServiceDelayed('httpd','restart');
+		} else {
+			// request a httpd reload when all records have been processed
+			$app->services->restartServiceDelayed('httpd','reload');
+		}
 		
 		//* Unset action to clean it for next processed vhost.
 		$this->action = '';
@@ -916,7 +924,7 @@
 			$command = 'userdel';
 			$command .= ' '.$data["old"]["system_user"];			
 			exec($command);
-			if($apache_chrooted) exec("chroot ".escapeshellcmd($web_config['website_basedir'])." ".$command);
+			if($apache_chrooted) $this->_exec("chroot ".escapeshellcmd($web_config['website_basedir'])." ".$command);
 			
 		}
 	}

--
Gitblit v1.9.1