On Linux systems, care must be given to file rights and modes.
Currently, I try to run Projector'ria in a relatively secure way, so I didn't give write rights to the web server. I've found some improvements to do.
- in zip archive: readme.txt and license.txt are unzipped in the current directory instead of projectorria directory: I've never read them because I havn't got the right to write directly in this directory.
- in config directory: I've found that Projector'ria may rewrite my config file in some cases (upgrades): projectorria/files/config/parameters.php. It's _very_ dangerous and I prefer give specific access if needed.
- I've found that in some cases (updates), files are written in the projectorria/files/cron/ directory. I find it curious because those files vanish away, seemingly...
It'll be cool to dig a bit on security masks to apply to enhance security a bit.
- in zip archive: readme.txt and license.txt are unzipped in the current directory instead of projectorria directory: I've never read them because I havn't got the right to write directly in this directory.
Ticket #871 recorded (for next version) : move readme.txt and licence.txt to projectorria folder
- in config directory: I've found that Projector'ria may rewrite my config file in some cases (upgrades): projectorria/files/config/parameters.php. It's _very_ dangerous and I prefer give specific access if needed.
Next version V3.0, will be the last one to do such things. parameters.php will be reduced to database connection information. Every other parameter will be move to database. Then creation of new parameters will not need any more to update parameters.php file.
- I've found that in some cases (updates), files are written in the projectorria/files/cron/ directory. I find it curious because those files vanish away, seemingly...
Yes, it is normal. CRON process needs a specific directory to work. As it is a "cronned" process, ot is not possible to directly stop it, or just know if it is still running. So this directory is used to put some "tag" files. Ticket #872 added to parameter this directory (possibly set up outsite web context)
En poursuivant votre navigation, vous acceptez le dépôt de cookies tiers destinés au bon fonctionnement et à la sécurisation du site (gestion de session, reCaptcha) et à une analyse statistique anonymisée des accès sur notre site (Google Analytics). Si vous vous inscrivez, les informations que vous fournirez ne seront jamais divulguées à un tiers sous quelque forme que ce soit. En savoir plus
Cookies settings
×
Functional Cookies
Ce site utilise des cookies pour assurer son bon fonctionnement et ne peuvent pas être désactivés de nos systèmes. Nous ne les utilisons pas à des fins publicitaires. Si ces cookies sont bloqués, certaines parties du site ne pourront pas fonctionner.
Session
Please login to see yours activities!
Other cookies
Ce site web utilise un certain nombre de cookies pour gérer, par exemple, les sessions utilisateurs.