[Eisfair] Notfall Hardwaredefekt erfordert eisfair-Hack
Hans-Georg Kiefer
hansgeorg at edv-einsteiger.de
Sa Nov 5 13:16:26 CET 2016
Hallo, Martin.
Am 05.11.2016 um 11:18 schrieb Martin:
>> Existiert denn der Pfad und die Datei darin?:
>> /var/www/htdocs/bilder/bildermenu.php
>> Welchen Besitzer und welche Rechte hat diese Datei?
> root at eis:~# ls -l /var/www/htdocs/bilder/bildermenu.php
> -rw-r--r-- 1 root root 436643 Oct 20 10:39
> /var/www/htdocs/bilder/bildermenu.php
>
Somit darf der Apache (wwwrun:nogroup) nicht auf diese Datei zugreifen.
>> Was gibt "ls -la /var/www/htdocs/bilder/" aus.
> root at eis:~# ls -la /var/www/htdocs/bilder/
> total 3244
> drwxr-xr-x 2 wwwrun root 4096 Nov 3 19:41 .
> drwxr-xr-x 27 root root 4096 Nov 5 00:07 ..
> -rwxrwxrwx 1 konrad users 666 Dec 2 2013 Bilder-ReadMe.txt
> -rw-r--r-- 1 wwwrun root 62 Nov 4 21:48 aktuellbildmenu.php
> -rw-r--r-- 1 wwwrun root 178 Dec 30 2007 aktuellbildmenu.php~
> -rw-r--r-- 1 root root 740 Dec 23 2007 bilddaten.php
> lrwxrwxrwx 1 wwwrun nogroup 31 Nov 3 19:41 bilddir2007-11-18.tmp
> -> /NET/Bilder/2007-11-18/thumb250
> -rw-r--r-- 1 root root 436643 Oct 20 10:39 bildermenu.php
> -rw-r--r-- 1 root root 3426 Dec 26 2007 bildermenu.php-man
> -rw-r--r-- 1 root root 1454 Feb 28 2015 bilderuebericht.php
> -rw-r--r-- 1 root root 3127 Dec 26 2007
> bilderuebericht.php20071226
> -rw-r--r-- 1 root root 1276 Dec 29 2007
> bilderuebericht.php20071229
> -rw-r--r-- 1 root root 1607 Nov 30 2013
> bilderuebericht.php20131129
> -rw-r--r-- 1 root root 1454 Feb 28 2015
> bilderuebericht.php20150228
> -rw-r--r-- 1 root root 1532 Feb 28 2015 bilderuebericht.php~
> -rw-r--r-- 1 root root 3590 Dec 30 2007 exif.php
> -rw-r--r-- 1 root root 3536 Dec 30 2007 exif.php~
> -rw-r--r-- 1 root root 400 Nov 30 2013 getimagesize-test.php
> -rw-r--r-- 1 root root 400 Nov 30 2013
> getimagesize-test.php~
> -rwxr-xr-x 1 root root 2721608 Dec 30 2007 image.jpg
> -rw-r--r-- 1 root root 3426 Jan 1 2008 makebildermenu.php
> -rw-r--r-- 1 root root 3396 Jan 1 2008 makebildermenu.php~
> -rw-r--r-- 1 root root 2390 Feb 5 2008 makethumb.php
> -rw-r--r-- 1 root root 2390 Feb 5 2008 makethumb.php~
> -rw-r--r-- 1 root root 827 Feb 28 2015 showbild.php
> -rw-r--r-- 1 root root 534 Feb 28 2015 showbild.php~
> -rw-r--r-- 1 root root 5426 Mar 21 2015 showbildexif.php
> -rw-r--r-- 1 root root 848 Dec 30 2007
> showbildexif.php20071230
> -rw-r--r-- 1 root root 3215 Feb 28 2015
> showbildexif.php20150228
> -rw-r--r-- 1 root root 5207 Mar 1 2015
> showbildexif.php20150301
> -rw-r--r-- 1 root root 5241 Mar 21 2015
> showbildexif.php20150321
> -rw-r--r-- 1 root root 5425 Mar 21 2015 showbildexif.php~
> -rw-r--r-- 1 root root 542 Dec 29 2007 test.php
> -rw-r--r-- 1 root root 517 Dec 29 2007 test.php~
> -rw-r--r-- 1 root root 1698 Dec 24 2007 vorschaubild.php
>
Ok. Sieht etwas nach Kraut und Rüben aus. Ich schlage vor, zunächst die
Grundrechte auf Standard zu setzen und anschl. über eine Härtung
nachzudenken.
Mit:
chown -R wwwrun:nogroup /var/www/htdocs
chmod 755 /var/www/htdocs
chmod 755 /var/www/htdocs/bilder
Sollte die Grundfunktion des Bildermenüs hergestellt sein.
>> Wie sieht die Apache- und die php5-Konfiguration aus?
> Erstmal: diese Dateien gibt es:
> root at eis:/etc/config.d# ls *php* *apache*
> apache2 apache2_php5 apache2_php5 php5_ccpp phpldapadmin
>
>
>
> **** apache2 *********************************************
> START_APACHE2='yes'
> APACHE2_PORT='80'
> APACHE2_SERVER_ADMIN='webmaster at mader.info'
> APACHE2_SERVER_NAME='eis.mader'
> APACHE2_SERVER_SIGNATURE='Off'
> APACHE2_DOCUMENT_ROOT='/var/www/htdocs'
> APACHE2_SSL='yes'
> APACHE2_SSL_PORT='443'
> APACHE2_SSL_LOGDIR='/var/www/log/'
> APACHE2_SSL_OSCP='no'
> APACHE2_DIRECTORY_INDEX='index.html index.htm'
> APACHE2_HOSTNAME_LOOKUPS='yes'
> APACHE2_VIEW_DIRECTORY_CONTENT='yes'
> APACHE2_ACCESS_CONTROL_TYPE_ALL='yes'
> APACHE2_ACCESS_CONTROL_TYPE_IP='no'
> APACHE2_ACCESS_CONTROL_TYPE_HOST='no'
> APACHE2_ACCESS_CONTROL_TYPE_LOCAL='no'
> APACHE2_ACCESS_CONTROL_IP='192.168.6.1/24'
> APACHE2_ACCESS_CONTROL_HOST='eis'
> APACHE2_ENABLE_SSI='no'
> APACHE2_ENABLE_HTTP2='no'
> APACHE2_ERROR_LOG='/var/www/log/error_log'
> APACHE2_ACCESS_LOG='/var/www/log/access_log'
> APACHE2_SCRIPT_ALIAS='/cgi-bin/'
> APACHE2_SCRIPT_DIR='/var/www/cgi-bin/'
> APACHE2_ERROR_DOCUMENT_N='0'
> APACHE2_ERROR_DOCUMENT_1_ERROR='404'
> APACHE2_ERROR_DOCUMENT_1_DOCUMENT='/404error.html'
> APACHE2_DIR_N='1'
> APACHE2_DIR_1_ACTIVE='yes'
> APACHE2_DIR_1_ALIAS='no'
> APACHE2_DIR_1_ALIAS_NAME=''
> #APACHE2_DIR_1_PATH='/usr/local/apache2/icons/'
> APACHE2_DIR_1_PATH='/var/www/htdocs'
> APACHE2_DIR_1_AUTH_NAME=''
> APACHE2_DIR_1_AUTH_TYPE='Basic'
> APACHE2_DIR_1_AUTH_N='0'
> APACHE2_DIR_1_ACCESS_CONTROL_TYPE_ALL='yes'
> APACHE2_DIR_1_ACCESS_CONTROL_TYPE_IP='no'
> APACHE2_DIR_1_ACCESS_CONTROL_TYPE_HOST='no'
> APACHE2_DIR_1_ACCESS_CONTROL_TYPE_LOCAL='no'
> APACHE2_DIR_1_ACCESS_CONTROL_IP='192.168.6.1/24'
> APACHE2_DIR_1_ACCESS_CONTROL_HOST='eis'
> APACHE2_DIR_1_CGI='none'
> APACHE2_DIR_1_SSI='no'
> APACHE2_DIR_1_VIEW_DIR_CONTENT='no'
> APACHE2_DIR_1_WEBDAV='no'
> APACHE2_DIR_2_ACTIVE='no'
> APACHE2_DIR_2_ALIAS='no'
> APACHE2_DIR_2_ALIAS_NAME=''
> APACHE2_DIR_2_PATH='/var/www/htdocs/geheim/'
> APACHE2_DIR_2_AUTH_NAME='Members only!'
> APACHE2_DIR_2_AUTH_TYPE='Basic'
> APACHE2_DIR_2_AUTH_N='0'
> APACHE2_DIR_2_AUTH_1_USER='user'
> APACHE2_DIR_2_AUTH_1_PASS='secret'
> APACHE2_DIR_2_ACCESS_CONTROL_TYPE_ALL='yes'
> APACHE2_DIR_2_ACCESS_CONTROL_TYPE_IP='no'
> APACHE2_DIR_2_ACCESS_CONTROL_TYPE_HOST='no'
> APACHE2_DIR_2_ACCESS_CONTROL_TYPE_LOCAL='no'
> APACHE2_DIR_2_ACCESS_CONTROL_IP='192.168.6.1/24'
> APACHE2_DIR_2_ACCESS_CONTROL_HOST='eis'
> APACHE2_DIR_2_CGI='none'
> APACHE2_DIR_2_SSI='no'
> APACHE2_DIR_2_VIEW_DIR_CONTENT='no'
> APACHE2_DIR_2_WEBDAV='no'
> APACHE2_VHOST_N='0'
> APACHE2_LOG_LEVEL='warn'
> APACHE2_LOG_COUNT='10'
> APACHE2_LOG_INTERVAL='weekly'
> APACHE2_MAX_KEEP_ALIVE_TIMEOUT='15'
> APACHE2_MAX_KEEP_ALIVE_REQUESTS='100'
> APACHE2_MAX_CLIENTS='250'
> APACHE2_MAX_REQUESTS_PER_CHILD='10000'
> APACHE2_MOD_CACHE='no'
> APACHE2_MOD_COMPAT='yes'
> APACHE2_HEADER_NOSNIFF='no'
> APACHE2_HEADER_XSSPROTECTION='no'
> APACHE2_HEADER_SAMEORIGIN='no'
>
OK.
>
> **** apache2_php5 *********************************************
> PHP5_MAX_EXECUTION_TIME='30'
> PHP5_DISPLAY_ERRORS='yes'
> PHP5_LOG_ERROR='no'
> PHP5_INCLUDE_PATH='.:/usr/share/php5:/usr/include/php5'
> PHP5_REGISTER_GLOBALS='no'
> PHP5_EXTENSION_DIR='/usr/lib/php5/extensions'
> PHP5_SENDMAIL_PATH=''
> PHP5_SENDMAIL_APP=''
> PHP5_DATE_TIMEZONE='Europe/Berlin'
> PHP5_DEFAULT_CHARSET='de_DE at euro'
> PHP5_INFO='yes'
> PHP5_MAX_POST_SIZE='16M'
> PHP5_MAX_UPLOAD_FILESIZE='2M'
> PHP5_MEMORY_LIMIT='16M'
> PHP5_UPLOAD_DIR='/tmp'
> PHP5_EXT_CACHE='no'
> PHP5_EXT_SOAP='no'
> PHP5_EXT_LDAP='no'
> PHP5_EXT_MYSQL='no'
> PHP5_EXT_MYSQL_SOCKET='/var/lib/mysql/mysql.sock'
> PHP5_EXT_MYSQL_HOST=''
> PHP5_EXT_MYSQL_PORT='3306'
> PHP5_EXT_MSSQL='no'
> PHP5_EXT_PGSQL='yes'
> PHP5_EXT_INTER='no'
> PHP5_EXT_SQLITE3='no'
>
OK.
>
> **** php5_ccpp *********************************************
> PHP5CCPP_MAX_EXECUTION_TIME='30'
> PHP5CCPP_DISPLAY_ERRORS='yes'
> PHP5CCPP_LOG_ERROR='no'
> PHP5CCPP_INCLUDE_PATH='.:/usr/share/php5:/usr/include/php5'
> PHP5CCPP_REGISTER_GLOBALS='no'
> PHP5CCPP_EXTENSION_DIR='/usr/lib/php5/extensions'
> PHP5CCPP_SENDMAIL_PATH=''
> PHP5CCPP_SENDMAIL_APP=''
> PHP5CCPP_DATE_TIMEZONE='Europe/Berlin'
> PHP5CCPP_MAX_POST_SIZE='8M'
> PHP5CCPP_MAX_UPLOAD_FILESIZE='2M'
> PHP5CCPP_MEMORY_LIMIT='8M'
> PHP5CCPP_UPLOAD_DIR='/tmp'
>
OK.
> **** phpldapadmin *********************************************
> brauchst Du glaube ich nicht
>
Erstmal nicht.
>
> Kannst Du da was raus lesen?
>
Das Rechtesystem ist beim Kopieren flöten gegangen. Also wie oben
vorgeschlagen die Dateienb und Ordner unterhalb /var/www/ dem Apachen
zugänglich machen sollte auch das Problem lösen.
> Gruß Martin
>
Gruß, Tanne
--
--------------------------
Es grüsst hochachtungsvoll
******* T A N N E ********
---
Diese E-Mail wurde von Avast Antivirus-Software auf Viren geprüft.
https://www.avast.com/antivirus
Mehr Informationen über die Mailingliste Eisfair