On Thu, May 29, 2014 at 11:12 AM, Stephan Beal <sgb...@googlemail.com> wrote:
> On Thu, May 29, 2014 at 5:08 PM, Michai Ramakers <m.ramak...@gmail.com> > wrote: > >> In case both files as well as their parent-dir are owned ftp.ftp, both >> syncs work fine. >> > > If fossil drops permissions as Andy suggests (i'm still trying to find the > relevant code, but have no reason to believe he's wrong), then that's the > problem. > To find the code: grep for "setuid". Fossil does drop permissions back to an unprivileged user when running as root. This is a security feature, to prevent a bug in Fossil from providing root shell access to an attacker. Also, root can break out of a chroot jail, so the chroot jail is only effective for normal users. -- D. Richard Hipp d...@sqlite.org
_______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
