From 8f43b193404b022ff26888f334e5939bba34cc9e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Antoine=20Beaupr=C3=A9?= Date: Thu, 10 Jul 2008 21:37:29 +0000 Subject: [PATCH] security precaution: leave the my.cnf readable only to the webserver. we're protected by the openbasedir --- install/alternc.install | 2 ++ 1 file changed, 2 insertions(+) diff --git a/install/alternc.install b/install/alternc.install index 2179af3a..f430b7e9 100644 --- a/install/alternc.install +++ b/install/alternc.install @@ -91,6 +91,8 @@ if [ -r /etc/alternc/my.cnf ]; then # * convert mysql variables into our MYSQL_ naming convention (;s) # * print the result (;p) eval `sed -n -e "/=/{s/ *= *\"\?/='/;s/\"\?\$/'/;s/host/MYSQL_HOST/;s/user/MYSQL_USER/;s/password/MYSQL_PASS/;s/database/MYSQL_DATABASE/;p}" /etc/alternc/my.cnf` + chown root:www-data /etc/alternc/my.cnf + chmod 640 /etc/alternc/my.cnf fi WARNING="WARNING: Do not edit this file, edit the one in /etc/alternc/templates and launch alternc.install again."