Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
I
ISPConfig 3
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 500
    • Issues 500
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 28
    • Merge Requests 28
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
  • Operations
    • Operations
    • Incidents
    • Environments
  • Analytics
    • Analytics
    • CI/CD
    • Repository
    • Value Stream
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Members
    • Members
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • ISPConfig
  • ISPConfig 3
  • Issues
  • #5947

Closed
Open
Created Dec 03, 2020 by Jesse Norell@jnorellDeveloper

zip backup restore incorrectly overwrites ownership

When restoring a backup in zip or zip_bzip2 formats, the restoreFileOwnership() function is called and changes ownership on everything under the web root but the log, ssl and web/stats directories. This will include all jailkit files (security implications) and backup files (quota implications?).

This should at minimum have a more complete blacklist of paths which will not be changed. Possibly it should additionally only include known paths.

Assignee
Assign to
3.2.2
Milestone
3.2.2
Assign milestone
Time tracking
None
Due date
None