weeheavy/scripts
1
0
Fork 0
Code Pull requests Activity

simplified configuration

Browse source
This commit is contained in:
Oliver Ladner 2014-01-10 10:38:55 +01:00
commit f7472d6163
1 changed files with 5 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

13
www-perms.sh
View file

@ -1,7 +1,4 @@
#!/usr/bin/env bash #!/usr/bin/env bash
# Author: Oliver Ladner <oli@lugh.ch>
# License: LGPL
#
# Checks the webroot for files being owned by www daemon and # Checks the webroot for files being owned by www daemon and
# writable at the same time. This is only needed by some files # writable at the same time. This is only needed by some files
# so we'll check with a whitelist. # so we'll check with a whitelist.
@ -9,11 +6,11 @@
WWWROOT=/var/www/ WWWROOT=/var/www/
WWWUSER=www-data WWWUSER=www-data
WHITELIST="(mpd.lugh.ch/music|\ WHITELIST="(
foo.example.org/cache|\ foo.example.org/cache|\
/wp-content/cache|\ /cache/foo|\
/piwik/config/config.ini.php|\ blah/tmpfile.txt
sitemap.xml* sitemap.xml*|
)" )"
listcount=0 listcount=0
whitelist_matches=0 whitelist_matches=0
@ -25,7 +22,7 @@ while IFS="" read -r matchedentry; do
echo -e "$matchedentry\r" echo -e "$matchedentry\r"
listcount=$((listcount+1)) listcount=$((listcount+1))
fi fi
done < <(find "$WWWROOT" ! -type l -perm /u+w -user $WWWUSER -o -perm /g+w -group $WWWUSER) done < <(find "$WWWROOT" ! -type l -perm /u+w -user $WWWUSER -o -perm /g+w -group $WWWUSER)
if [ $listcount -gt 0 ]; then if [ $listcount -gt 0 ]; then
echo "Finished: $listcount items are writable by '$WWWUSER' ($whitelist_matches whitelisted)." echo "Finished: $listcount items are writable by '$WWWUSER' ($whitelist_matches whitelisted)."