User Documenta... > Security > Feature (done?)

fix the error-output to write a valid php-file / #2999

MoveBookmark

Summary

v0.08
done?
Nov 12, 2006
100%
Nov 13, 2006 / pixtur
Jan 19, 2007 / pixtur
View previous 6 versions
pixtur
 

Attached files

No files uploaded
Viewing the _tmp/errors.inc.php file (because it's not a valid php-file) it security critical, because too many sensitive information is stored there.


7 Comments

binder

Nov 13, 2006
just add a header to starting page?
errors.inc.php is supposed to be opened with a text editor, so just add in the first line of the file: 
<? header("Location: index.php");exit ?>

madlyr

Nov 13, 2006
This file is viewable by system info page
This file is viewable by system info page and should have:
  1. proper user authentication checking (only admins could see this page, I'm not sure, maybe PM managers too),
  2. proper header with code page (currently this page does not have any header) - based on person language (we use utf-8).

binder

Nov 14, 2006
Antwort auf This file is viewable by system info page
yes, but not "as is", error.inc.php is parsed and then shown?

but of course, the best solution would be to add a right management to this file, too.

pixtur

Nov 14, 2006
Partly implemented...
The "system info" and the errors.log page is only accessible for Admins. The structure of the file itself will be changed into a valid php file.

Doing any more right checks would be too much of an effort. Adding an valid header to the file... Well... I mean... The error.log parsing is already... well... I mean it's just a fucking log file!

I will fix the readability by:
  • adding <?php at the beginning
  • starting all lines with #
That's it. I think we have a lot more to do than adding a valid header to the errors.log file ;-)

madlyr

Nov 14, 2006
Reply to Partly implemented...
put onlu utf-8 without getting it from user, some text/user names are stored in log in utf-8. Please :-) ;-).

binder

Nov 14, 2006
didn't want to make any trouble
but adding the code in my first comment just sends the browser to the starting page. Thus users without mod_rewrite don't get exposed to this kind of security hole. And all you have to do is skip first line with parsing for admin-info...

pixtur

Nov 14, 2006
Overlooked location header...
Hi Binder,
agreed. You solution is better. I will do it, as you suggested. Thanks for pointing it out again.

 
 

Comment / Update