Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Installation check for tmp folder #1295

Closed
robocoder opened this issue Apr 7, 2010 · 3 comments
Closed

Installation check for tmp folder #1295

robocoder opened this issue Apr 7, 2010 · 3 comments
Assignees
@robocoder
Labels
Bug For errors / faults / flaws / inconsistencies etc. worksforme The issue cannot be reproduced and things work as intended.

Comments

@robocoder
Copy link
Contributor

Brain dump. This is a recurring pain point.

Piwik's Installation system check advises users to "chmod a+w {$dir}". In the forums, the "recommendation" is often to "chmod 777 tmp". These are oversimplifications and generally, bad advice without knowing what the user's environment is (e.g., dedicated vs shared hosting).

My thought is that the installer would check the process id and directory/file permissions.

    $pass = false;
    /*
     * owner is user
     */
    if (posix_geteuid() == getmyuid())
    {
        if (fileperms("tmp") & 0700) == 0700)
        {
            $pass = true;
            if (fileperms("tmp") & 0077))
            {
                $warningMessages[] = 'You may want to restrict "group" and "other" access to the tmp folder';
            }
        }
        else
        {
            $errorMessages[] = 'You don't have sufficient access to the tmp folder; chmod u+rwx';
        }
    }
    /*
     * member of group
     */
    else if (posix_getegid() == getmygid())
    {
        if (fileperms("tmp") & 0070) == 0070)
        {
            $pass = true;
            if (filepermis("tmp") & 0007))
            {
                $warningMessages[] = 'You may want to restrict "other" access to the tmp folder';
            }
        }
        else
        {
            $errorMessages[] = 'You don't have sufficient access to the tmp folder; chmod g+rwx';
        }
    }
    /*
     * other
     */
    else if (fileperms("tmp") & 0007) == 0007)
    {
        $pass = true;
        $warningMessages[] = 'Consult your sysadmin or hosting provider. This may not be secure in some shared hosting environments.';
    {
    else
    {
        $errorMessages[] = 'You don't have sufficient access to the tmp folder; chmod a+rwx tmp'
    }

Keywords: outofscope
@mattab
Copy link
Member

mattab commented Apr 7, 2010

anthon, what is the issue that users are having exactly regarding the "chmod 777 tmp" suggestion?

I would be concerned issuing an error when it seems like it would be "good practise" advice?

@robocoder
Copy link
Contributor Author

Maybe I'm overthinking it. (Like I said, "brain dump".) But the forum has many topics/posts re: chmod -- which tells me the there's room for improvement.

@mattab
Copy link
Member

mattab commented Sep 17, 2011

I think it looks too complicated, but there are opened tickets to fix for the same issue: #1590, #1833

in the messages should we suggest chmod 775 instead or 755?

@robocoder robocoder added this to the Future releases milestone Jul 8, 2014
@robocoder robocoder self-assigned this Jul 8, 2014
@robocoder robocoder mentioned this issue Aug 15, 2010
Closed
This issue was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@robocoder robocoder

Labels
Bug For errors / faults / flaws / inconsistencies etc. worksforme The issue cannot be reproduced and things work as intended.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mattab @robocoder