| Anonymous | Login | Signup for a new account | 06-10-2026 00:33 PDT |
| Main | My View | View Issues | Change Log | Docs |
| Viewing Issue Simple Details [ Jump to Notes ] | [ View Advanced ] [ Issue History ] [ Print ] | ||||||||
| ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||||
| 0003934 | [Resin] | minor | always | 03-09-10 08:41 | 03-26-10 14:51 | ||||
| Reporter | ferg | View Status | public | ||||||
| Assigned To | ferg | ||||||||
| Priority | normal | Resolution | no change required | ||||||
| Status | closed | Product Version | |||||||
| Summary | 0003934: setuid per virtual host | ||||||||
| Description |
(rep by Peter Amiri) Is there a way to modify the user that Resin runs at per virtual host? I know that we can overwrite the User setting in resin.conf to make the server run as some other user than root, but what I want to know is if there is a way to specify the user setting within each virtual host entry. Here is my problem, I have Resin integrated into a cPanel server. Whenever a new account is setup in cPanel we automatically create config files that configures Resin for the account. The issue is when new files or directories are created within code. If someone creates a new directory in their home directory via code the directory is create with the 644 as the attributes and root:root as the owner. When this happens the user can't access the new file or directory via their FTP account because they don't have permissions. Every time this happens then need to open a ticket to have us modify the permissions of the file or directory so they can access it. I've tried to explain that they could access it via code but most of the time that goes over peoples heads. So my issue is that Resin is running as root and creating files as root in a users home directory. Is there any settings in the config files that I may not be aware of that may help with this scenario? |
||||||||
| Additional Information | |||||||||
| Attached Files | |||||||||
|
|
|||||||||
 Relationships |
|
|
Notes |
|
|
(0004491) ferg 03-26-10 14:51 |
Although it might be possible to create a thread and use setuid() on that thread to implement the specific request, this would leave open large security holes where the setuid() thread created or used a JVM thread still owned by root. Instead, use a different JVM for each user. |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 03-09-10 08:41 | ferg | New Issue | |
| 03-26-10 14:51 | ferg | Note Added: 0004491 | |
| 03-26-10 14:51 | ferg | Assigned To | => ferg |
| 03-26-10 14:51 | ferg | Status | new => closed |
| 03-26-10 14:51 | ferg | Resolution | open => no change required |
| Mantis 1.0.0rc3[^]
Copyright © 2000 - 2005 Mantis Group
28 total queries executed. 25 unique queries executed. |  |
