Project InfoSponsor & PartnerInstalling ispCPFAQDocumentationDevelopment
Current time: 05-04-2024, 04:20 AM Hello There, Guest! (LoginRegister)

ispCP - Board - Support / ispCP Omega Development Area / Security Advisories / Critical security issue

Post Reply 
Critical security issue
Author Message
iwik Offline


Posts: 2
Joined: Aug 2010
Reputation: 0
Post: #8
RE: Critical security issue
I don't think that making users backups to be readable by each other (everyone) is good idea.

(08-30-2010 01:35 AM)sci2tech Wrote:  A quick fix, that leave backup functional and prevent issue (diff against current trunk):
Code:
-                    $rs = setfmode("$dmn_backup_dir/$backup_filename", $domain_uid, $domain_gid, 0660);
+                    $rs = setfmode("$dmn_backup_dir/$backup_filename", 0, 0, 0444);
08-30-2010 05:33 PM
Find all posts by this user Quote this message in a reply
Post Reply 


Messages In This Thread
Critical security issue - sci2tech - 08-29-2010, 08:35 PM
RE: Minor security issue - gOOvER - 08-29-2010, 08:59 PM
RE: Minor security issue - sci2tech - 08-29-2010, 10:58 PM
RE: Critical security issue - sci2tech - 08-30-2010, 01:17 AM
RE: Critical security issue - kilburn - 08-30-2010, 01:23 AM
RE: Critical security issue - sci2tech - 08-30-2010, 01:35 AM
RE: Critical security issue - iwik - 08-30-2010 05:33 PM
RE: Critical security issue - sci2tech - 08-30-2010, 03:55 AM
RE: Critical security issue - kilburn - 08-30-2010, 06:44 PM
RE: Critical security issue - joximu - 08-30-2010, 07:01 PM
RE: Critical security issue - Nuxwin - 08-30-2010, 07:14 PM
RE: Critical security issue - joximu - 08-30-2010, 07:33 PM
RE: Critical security issue - BioALIEN - 08-30-2010, 11:19 PM

Forum Jump:


User(s) browsing this thread: 2 Guest(s)

Contact Us | isp Control Panel ( ispCP ) | Return to Top | Return to Content | Lite (Archive) Mode | RSS Syndication