Re: [Bobs-devel] backup over nfs ok, but files not visibles with the php web interface

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

> Sylvain MEILARD wrote:
>
>>I think i won't be easy... Apache should have reading right on backuped
>> files.
>>
>>
> Or something in the web interface needs elevated privileges, like a
> setuid program that is limited to only extracting the directory listing=
.
>
Yes, it could be a better solution. this program could be owned by
root:apache, with execution right for the group, and no right for others.
Apache should only use it to read directory used for backup. It would be =
very
simple and fast to write it in C. If you lack time, i'm ready to do it. I=
t
would simply consist in using opendir(), readdir(), stat() ? and closedir=
().
[...]
>>For now, what append if a user try to restore files on which he has no =
right
>> ?
>>
>>
> If he can select the file to restore in the bobs interface, cmdloop wil=
l
> restore it.
>
But the user can see all files and dirs on which apache has reading right=
,
even if the user himself has no right on it, isn'it ? And he also could
restore it, still with no right ?

regards,

sylvain

[...]