Re: [mod-security-users] some issues with 2.6
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] some issues with 2.6
|
From: Breno S. <bre...@gm...> - 2011-05-23 21:08:26
|
You mean ... umask didn't do any effect ? This is strange look at my test: umask 0000 root@ubuntu:/var/www# ls -lisa upload total 12 457887 4 drwxrwxrwx 2 www-data root 4096 2011-05-23 13:35 . 425483 4 drwxr-xr-x 13 www-data root 4096 2011-05-23 12:47 .. 332466 4 -rw-rw-rw- 1 www-data www-data 1181 2011-05-23 13:35 200px-Sinal_de_mais.svg[1].png umask 0007 root@ubuntu:/var/www# ls -lisa upload total 12 457887 4 drwxrwxrwx 2 www-data root 4096 2011-05-23 13:36 . 425483 4 drwxr-xr-x 13 www-data root 4096 2011-05-23 12:47 .. 332466 4 -rw-rw---- 1 www-data www-data 1181 2011-05-23 13:36 200px-Sinal_de_mais.svg[1].png On Mon, May 23, 2011 at 3:54 PM, Michael Haas <mic...@gm...>wrote: > yes i checked all twice, just recompiled with 2.5.13 => same configure > script and same apache/mod_sec conf and there the files are created with the > correct permission bits. > In 2.6 i also tried to set umask to 0000 but this doesn't have any effect > if i create a file in a cgi script the umask setting did have affect. So i > think the config should be ok since it works in 2.5.13. > > 2011/5/23 Breno Silva <bre...@gm...> > >> Michael, >> >> Since modsec 2.5.10 the file upload mode function has been changed: >> >> https://www.modsecurity.org/tracker/browse/MODSEC-129 >> >> Did you check if you set everything right ? umask ? >> >> Thanks >> >> Breno >> >> >> On Mon, May 23, 2011 at 2:52 PM, Michael Haas <mic...@gm...>wrote: >> >>> Thanks, now make test works again. >>> >>> >>> 2011/5/23 Breno Silva <bre...@gm...> >>> >>>> You need to do make CFLAGS=-DMSC_TEST test" >>>> >>>> Please see the reference manual : >>>> http://sourceforge.net/apps/mediawiki/mod-security/index.php?title=Reference_Manual >>>> >>>> On Mon, May 23, 2011 at 1:33 PM, Michael Haas < >>>> mic...@gm...> wrote: >>>> >>>>> Hello, >>>>> >>>>> i tried to update mod_security from 2.5.13 to 2.6.0 but didn't succeed >>>>> (apache 2.2.19). >>>>> First i encountered some error with the configure script in 2.6, i had >>>>> to add the LUA_SONAMES="so" environment variable in my make script in order >>>>> to get LUA working. In 2.5.13 i didn't need this. >>>>> >>>>> make test also didn't work got this error. >>>>> msc_test-re_operators.o: In function `msre_op_rsub_execute': >>>>> ../apache2/re_operators.c:404: undefined reference to `ap_regexec' >>>>> ../apache2/re_operators.c:418: undefined reference to `ap_regexec' >>>>> ../apache2/re_operators.c:372: undefined reference to `ap_pregcomp' >>>>> msc_test-re_operators.o: In function `msre_op_rsub_param_init': >>>>> ../apache2/re_operators.c:312: undefined reference to `ap_pregcomp' >>>>> collect2: ld returned 1 exit status >>>>> make[2]: *** [msc_test] Error 1 >>>>> The greatest prolem for me is that SecUploadFileMode isn't working >>>>> anymore the upload files are always created with permission 600. >>>>> The config is the same as for 2.5.13. >>>>> I have seen in the debug log that the config is used >>>>> Multipart: Created temporary file 1 (mode 0644): /tmp/apache.......... >>>>> but the file is created with 600, in 2.5.13 the file is created with >>>>> 644. Didn't find a way to change the permission bits at all (umask also >>>>> didn't have any effect on the upload files). >>>>> Does someone have a solution for the SecUploadFileMode problem? >>>>> >>>>> Thanks in Advance >>>>> Michael >>>>> >>>>> >>>>> >>>>> >>>>> ------------------------------------------------------------------------------ >>>>> What Every C/C++ and Fortran developer Should Know! >>>>> Read this article and learn how Intel has extended the reach of its >>>>> next-generation tools to help Windows* and Linux* C/C++ and Fortran >>>>> developers boost performance applications - including clusters. >>>>> http://p.sf.net/sfu/intel-dev2devmay >>>>> _______________________________________________ >>>>> mod-security-users mailing list >>>>> mod...@li... >>>>> https://lists.sourceforge.net/lists/listinfo/mod-security-users >>>>> ModSecurity Services from Trustwave's SpiderLabs: >>>>> https://www.trustwave.com/spiderLabs.php >>>>> >>>>> >>>> >>> >> > |