Summary: | Updated man2html ebuild | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Rob Kruus <crowbar> |
Component: | New packages | Assignee: | Tom Payne (RETIRED) <twp> |
Status: | RESOLVED FIXED | ||
Severity: | normal | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 52544 | ||
Bug Blocks: | |||
Attachments: |
Updated ebuild -- uses webapp eclass
Patch to make mansec behave some post install additions |
Description
Rob Kruus
2004-05-26 11:34:03 UTC
Created attachment 32089 [details]
Updated ebuild -- uses webapp eclass
Created attachment 32090 [details, diff]
Patch to make mansec behave
The uniq is because the mansec path includes a symbolic link (though I could
have dropped the follow...)
Thanks -- nice submission. In CVS but masked in package.mask pending bug # 52544 (no FollowSymLinks on /var/www/localhost/cgi-bin). yeah, I get the same problem here with mini_httpd running in chroot mode. I assume it has to do with the webapp.eclass not installing execuatables into cgi-bin. I tried to install the files into the directly into the cgi-bin but found they were not executable. Maybe I'll try with a config section to change permissions of the files. Rob, I think this is a generic webapp / cgi-bin problem. Many webservers won't follow symlinks in cgi-bin because it's a potential security hole. The workaround is to configure your webserver to allow them. I can tell you how to do it for apache, but don't know anything about mini_httpd. Regards, Tom i have an option in mini_http to run in a chroot (/var/www/..) or not. Having it run outside the chroot is no problemn (the symlinks work). And since it's installed on laptop running on the local interface only it's not problem not running in the chroot environment :-) Created attachment 32397 [details]
some post install additions
This version find files in the /var/www tree and changes the cgi-bin/man files
ot executable. It works if you have webapp-config setup to install
config-owned files, not the default virtual.
I kind of goes against the whole webapp.eclass idea, but in this case, it
resolves
the cgi-bin / link idea.
Thanks for this Rob, but I'll wait for the webapp-config fix so it can be done properly. Now unmasked from package.mask. |