simplified configuration
This commit is contained in:
parent
128951e5a7
commit
f7472d6163
1 changed files with 5 additions and 8 deletions
13
www-perms.sh
13
www-perms.sh
|
|
@ -1,7 +1,4 @@
|
|||
#!/usr/bin/env bash
|
||||
# Author: Oliver Ladner <oli@lugh.ch>
|
||||
# License: LGPL
|
||||
#
|
||||
# Checks the webroot for files being owned by www daemon and
|
||||
# writable at the same time. This is only needed by some files
|
||||
# so we'll check with a whitelist.
|
||||
|
|
@ -9,11 +6,11 @@
|
|||
|
||||
WWWROOT=/var/www/
|
||||
WWWUSER=www-data
|
||||
WHITELIST="(mpd.lugh.ch/music|\
|
||||
WHITELIST="(
|
||||
foo.example.org/cache|\
|
||||
/wp-content/cache|\
|
||||
/piwik/config/config.ini.php|\
|
||||
sitemap.xml*
|
||||
/cache/foo|\
|
||||
blah/tmpfile.txt
|
||||
sitemap.xml*|
|
||||
)"
|
||||
listcount=0
|
||||
whitelist_matches=0
|
||||
|
|
@ -25,7 +22,7 @@ while IFS="" read -r matchedentry; do
|
|||
echo -e "$matchedentry\r"
|
||||
listcount=$((listcount+1))
|
||||
fi
|
||||
done < <(find "$WWWROOT" ! -type l -perm /u+w -user $WWWUSER -o -perm /g+w -group $WWWUSER)
|
||||
done < <(find "$WWWROOT" ! -type l -perm /u+w -user $WWWUSER -o -perm /g+w -group $WWWUSER)
|
||||
|
||||
if [ $listcount -gt 0 ]; then
|
||||
echo "Finished: $listcount items are writable by '$WWWUSER' ($whitelist_matches whitelisted)."
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue