[Bug 109559] Re: Please don't change permissions of /var/log/lighttpd during upgrade
Fixed in lighttpd tag debian/1.4.28-4 https://salsa.debian.org/debian/lighttpd/-/commit/91f7e8b8adf4cfaa81af858bed959811fbd0151d ** Changed in: lighttpd (Ubuntu) Status: Triaged => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/109559 Title: Please don't change permissions of /var/log/lighttpd during upgrade To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lighttpd/+bug/109559/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 109559] Re: Please don't change permissions of /var/log/lighttpd during upgrade
"chown www-data:www-data /var/log/lighttpd" is done unconditionally in postinst. It should only be done when that dir is created for the first time, but I've no idea how to implement that. -- Please don't change permissions of /var/log/lighttpd during upgrade https://bugs.launchpad.net/bugs/109559 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 109559] Re: Please don't change permissions of /var/log/lighttpd during upgrade
** Changed in: lighttpd (Ubuntu) Importance: Wishlist => Medium -- Please don't change permissions of /var/log/lighttpd during upgrade https://bugs.launchpad.net/bugs/109559 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 109559] Re: Please don't change permissions of /var/log/lighttpd during upgrade
Also, I'd like to propose that since this prevents a server from restarting after a security update in a production environment, that it be promoted from "wishlist" to a real severity. I'm new here, so I won't make that change myself... but I highly encourage someone with real authority to do so. -- Please don't change permissions of /var/log/lighttpd during upgrade https://bugs.launchpad.net/bugs/109559 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 109559] Re: Please don't change permissions of /var/log/lighttpd during upgrade
The trouble here is that the user lighttpd runs as is configured from lighttpd.conf. The server supports running as the specified user. For a new installation, I can understand how the package might assume a particular user, but once the system is installed, updates need to honor the configuration. If a package is already installed, it's a good bet that you shouldn't screw with the permissions and users associated with that package, during an upgrade. That means, don't re-create the www- data user, sure as hell don't give it a shell, and don't change the ownership of related files. The package scripts could always grep out server.username from /etc/lighttpd/lighttpd.conf, but you shouldn't just assume www-data, and stomp all over an existing configuration. -- Please don't change permissions of /var/log/lighttpd during upgrade https://bugs.launchpad.net/bugs/109559 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 109559] Re: Please don't change permissions of /var/log/lighttpd during upgrade
This seems to be related: http://bugs.debian.org/cgi- bin/bugreport.cgi?bug=406338 ("~ is readable by www-data", complaining about too wide permissions). Anyway, it might be a good idea to forward this issue to Debian. -- Please don't change permissions of /var/log/lighttpd during upgrade https://bugs.launchpad.net/bugs/109559 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 109559] Re: Please don't change permissions of /var/log/lighttpd during upgrade
** Tags removed: upgrade -- Please don't change permissions of /var/log/lighttpd during upgrade https://bugs.launchpad.net/bugs/109559 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs