retitle 447542 filesystem permissions and layout found 447542 3.0.2-4 merge 447542 525690 thanks
I mentioned this briefly in another bug report, though I believe this should be a separate issue. Therefore I'm using this report which is related. I suggest treating several folders like a temp directory, just letting www-data in is no longer the way to go since the days where we started using php as fastcgi and such, I believe. This is also necessary to be able to use multi-site setup flexibly (see also #437836). chmod 1753 - /var/cache/phpbb3/cache/ - /var/lib/phpbb3/avatars/ - /var/lib/phpbb3/avatars/gallery/ - /var/lib/phpbb3/avatars/upload/ - /var/lib/phpbb3/store/ - /var/lib/phpbb3/files/ Probably what remains in /etc and in /usr should also be moved to /var/lib. - /usr/share/phpbb3/www/images/ranks/ - /usr/share/phpbb3/www/images/smilies/ (owner can stay root) - /etc/phpbb3/styles /etc/phpbb3/styles is another matter: If we follow the path from the web server to the actual files: /usr/share/phpbb3/www/styles -> /etc/phpbb3/styles, /etc/phpbb3/styles/* -> /usr/share/phpbb3/styles/... Maybe one should link /usr/share/phpbb3/www/styles directly into /var/lib/phpbb3/styles/ (new) and put a link to the default styles from there to /usr/share/phpbb3/styles/, just as /etc/phpbb3/styles/ does it right now. However, I do not believe one should leave those default styles writable via the web. There should be common ground, especially in multi-site. One could tailor their admin scripts/control panels/whatever to create new templates derived from the old ones that the users can modify via the web interface. Anyway, changes that cannot be written to the filesystem are stored in the database by phpBB AFAIK. Please discuss. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
