Evergreen

Change defaults to run Apache as www-data and log to /var/log/

Bug #1054178 reported by Alex Lazar on 2012-09-21

This bug affects 3 people

Affects		Status	Importance	Assigned to	Milestone
	Evergreen	Triaged	Wishlist	Unassigned

Bug Description

Apache is currently set to run as the opensrf user in order to write logs to /openils/var/log/, which is owned by opensrf user. This is a deviation from Apache and system defaults and is not strictly necessary.

Apache logging defaults should be set to log to /var/log/, and then Apache can run by default as www-data.

Tags:

Revision history for this message

Thomas Berezansky (tsbere) wrote on 2012-09-21:

I believe (but am not positive) that this is also needed for offline transaction uploading, as to my knowledge that writes actual files that opensrf perm users would need to read later.

Revision history for this message

Jason Etheridge (phasefx) wrote on 2012-09-21: Re: [Bug 1054178] Re: Change defaults to run Apache as www-data and log to /var/log/

> I believe (but am not positive) that this is also needed for offline
> transaction uploading, as to my knowledge that writes actual files that
> opensrf perm users would need to read later.

I think since those are created by CGI scripts and not Apache modules,
we could use SUID or somesuch for them.

-- Jason

Revision history for this message

Galen Charlton (gmc) wrote on 2012-09-21:

I concur in your belief that offline circ uploads would have to be handled as well.

Revision history for this message

Bill Erickson (berick) wrote on 2012-09-21:

Vandelay file uploads should be writable by opensrf as well. Files are uploaded via mod_perl and later deleted by drones. Though, we could change the code, of course. They don't have to be deleted in real time by the drones.

Ben Shum (bshum) on 2012-12-13

Changed in evergreen:
status:	New → Triaged
importance:	Undecided → Wishlist
milestone:	none → 2.4.0-alpha

Ben Shum (bshum) on 2013-03-03

Changed in evergreen:
milestone:	2.4.0-alpha1 → 2.4.0-beta

Ben Shum (bshum) on 2013-03-17

Changed in evergreen:
milestone:	2.4.0-beta → 2.4.0-rc

Ben Shum (bshum) on 2013-04-27

tags:	added: apache installation
Changed in evergreen:
milestone:	2.4.0-rc → 2.5.0-alpha

Dan Wells (dbw2) on 2013-06-12

Changed in evergreen:
milestone:	2.5.0-m1 → none

Revision history for this message

Jason Boyer (jboyer) wrote on 2020-10-15:

I just happened to notice this bug while searching for something else and I agree it's the way to go (though I don't have strong feelings about where it's logged). The way I've always handled this was to change the necessary directories (/openils/var/data/offline and /openils/var/data/vandelay now that /tmp is a bad idea) to be owned by opensrf:www-data and make them group writable.

If no one sees any reason to avoid doing this I can look into putting a docs change branch together.

Terran McCanna (tmccanna) on 2021-10-27

tags:

added: install-upgrade
removed: installation

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.