vicidial.org

[eijal]

What are the correct permissions for agc, astguiclient and vicidial directories?

By now, I have these permissions in the web server:

1. agc directory

Code: Select all

# ls -al agc
total 992
drwxrwxrwx  3 root root   4096 2008-03-27 21:35 .
drwxr-xr-x 16 root root   4096 2008-05-27 12:16 ..
-rwxrwxrwx  1 root root  16169 2007-05-28 11:29 active_list_refresh.php
-rwxrwxrwx  1 root root 115707 2007-05-28 11:29 astguiclient.php
-rwxrwxrwx  1 root root   6685 2007-05-28 11:29 call_log_display.php
-rwxrwxrwx  1 root root   9479 2007-05-28 11:29 conf_exten_check.php
-rwxrwxrwx  1 root root   1620 2008-03-14 18:30 dbconnect.php
drwxrwxrwx  2 root root  12288 2008-03-11 13:03 images
-rwxrwxrwx  1 root root  14103 2007-05-28 11:29 inbound_popup.php
-rwxrwxrwx  1 root root   9115 2007-05-28 11:29 live_exten_check.php
-rwxrwxrwx  1 root root  44618 2007-05-28 11:29 manager_send.php
-rwxrwxrwx  1 root root   4425 2007-05-28 11:29 park_calls_display.php
lrwxrwxrwx  1 root root      9 2008-03-27 21:24 project_auth_entries.txt -> /dev/null
-rwxrwxrwx  1 root root  91204 2007-05-28 11:29 vdc_db_query.php
lrwxrwxrwx  1 root root      9 2008-03-27 21:35 vicidial_auth_entries.txt -> /dev/null
-rwxrwxrwx  1 root root  11472 2008-05-13 22:02 vicidial_debug.txt
-rwxrwxrwx  1 root root 268192 2008-05-27 12:08 vicidial.php
-rwxrwxrwx  1 root root 268092 2007-05-28 13:36 vicidial.php.backup
-rwxrwxrwx  1 root root   4156 2007-05-28 11:29 voicemail_check.php


2. astguiclient directory

Code: Select all

# ls -al astguiclient/
total 20
drwxrwxrwx  2 root root 4096 2008-03-11 13:05 .
drwxr-xr-x 16 root root 4096 2008-05-27 12:16 ..


3. vicidial directory

Code: Select all

# ls -al vicidial/
total 4276
drwxrwxrwx  4 root root    4096 2008-03-27 21:27 .
drwxr-xr-x 16 root root    4096 2008-05-27 12:16 ..
lrwxrwxrwx  1 root root       9 2008-03-27 21:27 admin_changes_log.txt -> /dev/null
-rwxrwxrwx  1 root root   25143 2007-05-28 11:29 admin_modify_lead.php
-rwxrwxrwx  1 root root  521512 2007-05-28 11:29 admin.php
-rwxrwxrwx  1 root root    7851 2007-05-28 11:29 admin_search_lead.php
drwxrwxrwx  2 root root    4096 2008-03-11 12:52 agent_reports
-rwxrwxrwx  1 root root    3566 2007-05-28 11:29 AST_admin_log_display.php
-rwxrwxrwx  1 root root   11204 2007-05-28 11:29 AST_agent_disposition.php
-rwxrwxrwx  1 root root   19928 2007-05-28 11:29 AST_agent_performance_detail.php
-rwxrwxrwx  1 root root    9731 2007-05-28 11:29 AST_agent_performance.php
-rwxrwxrwx  1 root root   11894 2007-05-28 11:29 AST_agent_time_sheet_archive.php
-rwxrwxrwx  1 root root   11862 2007-05-28 11:29 AST_agent_time_sheet.php
-rwxrwxrwx  1 root root   16850 2007-05-28 11:29 AST_CLOSERstats.php
-rwxrwxrwx  1 root root    5594 2007-05-28 11:29 AST_inboundEXTstats_department.php
-rwxrwxrwx  1 root root   14704 2007-05-28 11:29 AST_inboundEXTstats.php
-rwxrwxrwx  1 root root   13875 2007-05-28 11:29 AST_parkstats.php
-rwxrwxrwx  1 root root   11597 2007-05-28 11:29 AST_server_performance.php
-rwxrwxrwx  1 root root    8516 2007-05-28 11:29 AST_timeonpark.php
-rwxrwxrwx  1 root root   33275 2007-05-28 11:29 AST_timeonVDADall.php
-rwxrwxrwx  1 root root   39587 2007-05-28 11:29 AST_timeonVDADallREC.php
-rwxrwxrwx  1 root root   15345 2007-05-28 11:29 AST_timeonVDADallSUMMARY.php
-rwxrwxrwx  1 root root   14424 2007-05-28 11:29 AST_timeonVDAD.php
-rwxrwxrwx  1 root root   20520 2007-05-28 11:29 AST_VDADstats.php
-rwxrwxrwx  1 root root    5351 2007-05-28 11:29 AST_VICIDIAL_hopperlist.php
-rwxrwxrwx  1 root root   15271 2007-05-28 11:29 closer_dispo.php
-rwxrwxrwx  1 root root   17621 2007-05-28 11:29 closer-fronter_popup2.php
-rwxrwxrwx  1 root root   20688 2007-05-28 11:29 closer-fronter_popup.php
-rwxrwxrwx  1 root root   13023 2007-05-28 11:29 closer.php
-rwxrwxrwx  1 root root   17146 2007-05-28 11:29 closer_popup.php
-rwxrwxrwx  1 root root       8 2007-05-28 11:29 count.htm
-rwxrwxrwx  1 root root    1614 2008-03-14 18:31 dbconnect.php
-rwxrwxrwx  1 root root    8646 2007-05-28 11:29 group_hourly_stats.php
-rwxrwxrwx  1 root root     492 2007-05-28 11:29 help.gif
-rwxrwxrwx  1 root root    2406 2007-05-28 11:29 listloaderMAIN.php
-rwxrwxrwx  1 root root   31605 2007-05-28 11:29 listloader.php
-rwxrwxrwx  1 root root   27945 2007-05-28 11:29 listloader.pl
-rwxrwxrwx  1 root root    4565 2007-05-28 11:29 listloader_rowdisplay.pl
-rwxrwxrwx  1 root root 1656087 2008-05-28 17:29 listloader_stmts.txt
-rwxrwxrwx  1 root root   28168 2007-05-28 11:29 listloader_super.pl
-rwxrwxrwx  1 root root     605 2007-05-28 11:29 log_test.php
-rwxrwxrwx  1 root root   67549 2007-05-28 11:29 new_listloader_superL.php
-rwxrwxrwx  1 root root    9836 2007-05-28 11:29 phone_stats.php
drwxrwxrwx  2 root root   12288 2008-03-25 16:06 ploticus
lrwxrwxrwx  1 root root       9 2008-03-27 21:22 project_auth_entries.txt -> /dev/null
-rwxrwxrwx  1 root root    5539 2007-05-28 11:29 record_conf_1_hour.php
-rwxrwxrwx  1 root root   14938 2007-05-28 11:29 remote_dispo.php
-rwxrwxrwx  1 root root   13373 2007-05-28 11:29 user_stats.php
-rwxrwxrwx  1 root root    6969 2007-05-28 11:29 user_status.php
-rwxrwxrwx  1 root root   22872 2007-05-28 11:29 vdremote.php
-rwxrwxrwx  1 root root 1169077 2008-05-28 17:29 vicidial_temp_file.txt
-rwxrwxrwx  1 root root   11438 2007-05-28 11:29 voice_lab.php
-rwxrwxrwx  1 root root   12708 2007-05-28 11:29 vtiger_search.php
-rwxrwxrwx  1 root root    1074 2007-05-28 11:29 welcome.php


As you can see, everybody has access to theses directories; and that means security issues.

How can I restrict more the access to these directories, taking care of the vicidial_temp_file.txt file to load leads without troubles?

thanks

[pylinuxian]

Here is what default install has :

b-1:/var/www/apache2-default# ls -alihs *
17587 4.0K -rw-r--r-- 1 root root 2.2K 2005-12-14 16:25 apache_pb22_ani.gif
17588 4.0K -rw-r--r-- 1 root root 2.4K 2005-12-14 16:25 apache_pb22.gif
17589 4.0K -rw-r--r-- 1 root root 1.5K 2005-12-14 16:25 apache_pb22.png
17584 4.0K -rw-r--r-- 1 root root 2.3K 2004-11-20 20:16 apache_pb.gif
17585 4.0K -rw-r--r-- 1 root root 1.4K 2004-11-20 20:16 apache_pb.png
17586 4.0K -rw-r--r-- 1 root root 20 2008-05-11 18:23 index.php

and I guess its -rw-r--r-- what you're looking for.
I even think -rw------ works too.

[eijal]

What about of vicidial_temp_file.txt file?

[pylinuxian]

If it is a link to /dev/null ... who cares ?

[eijal]

If it is a link to /dev/null ... who cares ?

What link?

The vicidial_temp_file.txt file is to load leads. How did you create that link?

Could you share the output of the following commands?

#ls -al agc
#ls -al astguiclient
#ls -al vicidial

[pylinuxian]

oops ... thought you said : project_auth_entries.txt
1 root root 9 2008-03-27 21:24 project_auth_entries.txt -> /dev/null

[eijal]

Please help
If I have the following permissions in the vicidial directory

Code: Select all

[root@WebServer htdocs]# ls -al vicidial/
total 4276
drwxrwxrwx  4 root root    4096 2008-03-27 21:27 .
drwxr-xr-x 16 root root    4096 2008-05-27 12:16 ..
lrwxrwxrwx  1 root root       9 2008-03-27 21:27 admin_changes_log.txt -> /dev/null
-rw-r--r--  1 root root   25143 2007-05-28 11:29 admin_modify_lead.php
-rw-r--r--  1 root root  521512 2007-05-28 11:29 admin.php
-rw-r--r--  1 root root    7851 2007-05-28 11:29 admin_search_lead.php
drw-r--r--  2 root root    4096 2008-03-11 12:52 agent_reports
-rw-r--r--  1 root root    3566 2007-05-28 11:29 AST_admin_log_display.php
-rw-r--r--  1 root root   11204 2007-05-28 11:29 AST_agent_disposition.php
-rw-r--r--  1 root root   19928 2007-05-28 11:29 AST_agent_performance_detail.php
-rw-r--r--  1 root root    9731 2007-05-28 11:29 AST_agent_performance.php
-rw-r--r--  1 root root   11894 2007-05-28 11:29 AST_agent_time_sheet_archive.php
-rw-r--r--  1 root root   11862 2007-05-28 11:29 AST_agent_time_sheet.php
-rw-r--r--  1 root root   16850 2007-05-28 11:29 AST_CLOSERstats.php
-rw-r--r--  1 root root    5594 2007-05-28 11:29 AST_inboundEXTstats_department.php
-rw-r--r--  1 root root   14704 2007-05-28 11:29 AST_inboundEXTstats.php
-rw-r--r--  1 root root   13875 2007-05-28 11:29 AST_parkstats.php
-rw-r--r--  1 root root   11597 2007-05-28 11:29 AST_server_performance.php
-rw-r--r--  1 root root    8516 2007-05-28 11:29 AST_timeonpark.php
-rw-r--r--  1 root root   33275 2007-05-28 11:29 AST_timeonVDADall.php
-rw-r--r--  1 root root   39587 2007-05-28 11:29 AST_timeonVDADallREC.php
-rw-r--r--  1 root root   15345 2007-05-28 11:29 AST_timeonVDADallSUMMARY.php
-rw-r--r--  1 root root   14424 2007-05-28 11:29 AST_timeonVDAD.php
-rw-r--r--  1 root root   20520 2007-05-28 11:29 AST_VDADstats.php
-rw-r--r--  1 root root    5351 2007-05-28 11:29 AST_VICIDIAL_hopperlist.php
-rw-r--r--  1 root root   15271 2007-05-28 11:29 closer_dispo.php
-rw-r--r--  1 root root   17621 2007-05-28 11:29 closer-fronter_popup2.php
-rw-r--r--  1 root root   20688 2007-05-28 11:29 closer-fronter_popup.php
-rw-r--r--  1 root root   13023 2007-05-28 11:29 closer.php
-rw-r--r--  1 root root   17146 2007-05-28 11:29 closer_popup.php
-rw-r--r--  1 root root       8 2007-05-28 11:29 count.htm
-rw-r--r--  1 root root    1614 2008-03-14 18:31 dbconnect.php
-rw-r--r--  1 root root    8646 2007-05-28 11:29 group_hourly_stats.php
-rw-r--r--  1 root root     492 2007-05-28 11:29 help.gif
-rw-r--r--  1 root root       0 2008-03-11 12:57 index.html
-rw-r--r--  1 root root    2406 2007-05-28 11:29 listloaderMAIN.php
-rw-r--r--  1 root root   31605 2007-05-28 11:29 listloader.php
-rw-r--r--  1 root root   27945 2007-05-28 11:29 listloader.pl
-rw-r--r--  1 root root    4565 2007-05-28 11:29 listloader_rowdisplay.pl
-rw-r--r--  1 root root 1656087 2008-05-28 17:29 listloader_stmts.txt
-rw-r--r--  1 root root   28168 2007-05-28 11:29 listloader_super.pl
-rw-r--r--  1 root root     605 2007-05-28 11:29 log_test.php
-rw-r--r--  1 root root   67549 2007-05-28 11:29 new_listloader_superL.php
-rw-r--r--  1 root root    9836 2007-05-28 11:29 phone_stats.php
drw-r--r--  2 root root   12288 2008-03-25 16:06 ploticus
lrwxrwxrwx  1 root root       9 2008-03-27 21:22 project_auth_entries.txt -> /dev/null
-rw-r--r--  1 root root    5539 2007-05-28 11:29 record_conf_1_hour.php
-rw-r--r--  1 root root   14938 2007-05-28 11:29 remote_dispo.php
-rw-r--r--  1 root root   13373 2007-05-28 11:29 user_stats.php
-rw-r--r--  1 root root    6969 2007-05-28 11:29 user_status.php
-rw-r--r--  1 root root   22872 2007-05-28 11:29 vdremote.php
-rw-r--r--  1 root root 1169077 2008-05-28 17:29 vicidial_temp_file.txt
-rw-r--r--  1 root root   11438 2007-05-28 11:29 voice_lab.php
-rw-r--r--  1 root root   12708 2007-05-28 11:29 vtiger_search.php
-rw-r--r--  1 root root    1074 2007-05-28 11:29 welcome.php


I have these warnings in the vicidial.php page

Code: Select all

Warning: fopen(./project_auth_entries.txt) [function.fopen]: failed to open stream: Permission denied in /usr/local/apache2/htdocs/vicidial/admin.php on line 1025

Warning: fwrite(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/admin.php on line 1084

Warning: fclose(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/admin.php on line 1085

Warning: Cannot modify header information - headers already sent by (output started at /usr/local/apache2/htdocs/vicidial/admin.php:1025) in /usr/local/apache2/htdocs/vicidial/admin.php on line 1098


Why is this happening?
the following permissions is for project_auth_entries.txt file

Code: Select all

lrwxrwxrwx  1 root root       9 2008-03-27 21:22 project_auth_entries.txt -> /dev/null


thanks

[Op3r]

did you run install.pl from your vicidial source directory? if so then you dont need to worry about the permissions.

[pylinuxian]

you seem to have changed default permissions.
So
You could browse the web for apache2 stuff ... you will learn something new,
OR
you could remove (rm -Rf /var/www/*) everything & re-install Vicidial again & keep the files as they are & you should be ok since everybody does it that way & have no problems.
one other thing is that apache2 is as secure as you want it to & maybe far more than you ever thought security could go, so just stick to default configs & you will be another happy user of apache
OR
it could be some perl module that is missing.

[eijal]

This is the solution that I am figuring out

Here it is:

Code: Select all

# chmod 777 vicidial/
# cd vicidial/
# chmod -R 644 *
# chmod 777 agent_reports/
# chmod 777 ploticus/
# cd ../
# chmod 777 agc/
# cd agc/
# chmod -R 644 *
# chmod 777 images/


plus:

1. I changed the WWW writable in the admin.php server settings to "0" (admin.php -> Admin -> System Settings -> Webroot Writable)

2. I wrote "$WeBRooTWritablE = '0';" at the bottom of the dbconnect.php files

But I still have something that is bothering me. When I go to users -> STATS or users -> STATUS, I have the following messages:

Code: Select all

Warning: fopen(./project_auth_entries.txt) [function.fopen]: failed to open stream: Permission denied in /usr/local/apache2/htdocs/vicidial/user_stats.php on line 47

Warning: fwrite(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_stats.php on line 68

Warning: fclose(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_stats.php on line 69


OR

Code: Select all

Warning: fopen(./project_auth_entries.txt) [function.fopen]: failed to open stream: Permission denied in /usr/local/apache2/htdocs/vicidial/user_status.php on line 47

Warning: fwrite(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_status.php on line 69

Warning: fclose(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_status.php on line 70


Matt
How can I solve these warnings?
Obviously, without telling DON'T SHOW WARNING MESSAGES to the php.ini

Thanks

[mflorell]

astguiclient version?

[eijal]

astguiclient version?

astguiclient 2.0.3

[mflorell]

I believe this was one of the bugs in that release. You might want to upgrade to 2.0.4.1rc2.