[JENKINS-7575] .deb package postinst prevents serving static content directly - Jenkins Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Component/s: other
Labels:
None
Environment:
Debian-based GNU/Linux

Similar Issues:

Show

Description

Our Apache server is proxying Hudson, while serving its static content directly.
As Apache workers are run by user www-data and group www-data, they're not entitled to access /var/run/hudson and /var/lib/hudson since they're only group readable (hudson:adm).
This comes from the fact the .deb package postinst script performs:

chown hudson:adm on /var/run/hudson and /var/lib/hudson. Why "adm"?
chmod 750 on /var/run/hudson and /var/lib/hudson. Why not user readable?

Could you please amend the postinst script so that:

either it just set access rights at first installation time, so that my custom changes are not reset at upgrade time.
or it uses: chmod 755.
or it uses: chown hudson:www-data.
or, simpler, it doesn't deal with such things at all.

Thanks.

Attachments

Issue Links

is related to

JENKINS-4047 Debian package sets wrong permissions on /var/lib/hudson/.ssh

Resolved

JENKINS-5969 Problematic chown/chmod at Debian package upgrade

Resolved

JENKINS-5771 Debian package upgrade sets wrong user permissions if HUDSON_USER is not hudson (default)

Resolved

Activity

People

Assignee:: Kohsuke Kawaguchi

Reporter:: Régis Desgroppes

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2010-09-27 02:17

Updated:: 2015-09-21 06:39

Resolved:: 2011-12-03 08:20