there is a slight problem here:
- backup sets are processed as root, by a cron job
- source directories for these backup sets are not necessarily viewable by apache user
- it would be possible to create a 'sudo ls' script that would allow the apache user to list ALL directories, BUT: this would also allow non-privileged users to see all directories on a system, even if they shouldn't.
one solution might be to implement some kind of security-aware getFolderContents($user) that would only return items viewable by $user....
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
there is a slight problem here:
- backup sets are processed as root, by a cron job
- source directories for these backup sets are not necessarily viewable by apache user
- it would be possible to create a 'sudo ls' script that would allow the apache user to list ALL directories, BUT: this would also allow non-privileged users to see all directories on a system, even if they shouldn't.
one solution might be to implement some kind of security-aware getFolderContents($user) that would only return items viewable by $user....