-
Bug
-
Resolution: Fixed
-
Major
-
None
-
Debian-based GNU/Linux
Our Apache server is proxying Hudson, while serving its static content directly.
As Apache workers are run by user www-data and group www-data, they're not entitled to access /var/run/hudson and /var/lib/hudson since they're only group readable (hudson:adm).
This comes from the fact the .deb package postinst script performs:
- chown hudson:adm on /var/run/hudson and /var/lib/hudson. Why "adm"?
- chmod 750 on /var/run/hudson and /var/lib/hudson. Why not user readable?
Could you please amend the postinst script so that:
- either it just set access rights at first installation time, so that my custom changes are not reset at upgrade time.
- or it uses: chmod 755.
- or it uses: chown hudson:www-data.
- or, simpler, it doesn't deal with such things at all.
Thanks.
- is related to
-
JENKINS-4047 Debian package sets wrong permissions on /var/lib/hudson/.ssh
-
- Resolved
-
-
JENKINS-5969 Problematic chown/chmod at Debian package upgrade
-
- Resolved
-
-
JENKINS-5771 Debian package upgrade sets wrong user permissions if HUDSON_USER is not hudson (default)
-
- Resolved
-
[JENKINS-7575] .deb package postinst prevents serving static content directly
Link |
New:
This issue is related to |
Link |
New:
This issue is related to |
Link |
New:
This issue is related to |
Assignee | Original: ashlux [ ashlux ] | New: Kohsuke Kawaguchi [ kohsuke ] |
Resolution | New: Fixed [ 1 ] | |
Status | Original: Open [ 1 ] | New: Resolved [ 5 ] |
Component/s | New: other [ 15490 ] | |
Component/s | Original: infrastructure [ 15687 ] |
Status | Original: Resolved [ 5 ] | New: Closed [ 6 ] |
Workflow | Original: JNJira [ 137674 ] | New: JNJira + In-Review [ 204568 ] |