vicidial.org

What are the correct permissions for agc, astguiclient and vicidial directories?

By now, I have these permissions in the web server:

1. agc directory

Code: Select all

# ls -al agc
total 992
drwxrwxrwx  3 root root   4096 2008-03-27 21:35 .
drwxr-xr-x 16 root root   4096 2008-05-27 12:16 ..
-rwxrwxrwx  1 root root  16169 2007-05-28 11:29 active_list_refresh.php
-rwxrwxrwx  1 root root 115707 2007-05-28 11:29 astguiclient.php
-rwxrwxrwx  1 root root   6685 2007-05-28 11:29 call_log_display.php
-rwxrwxrwx  1 root root   9479 2007-05-28 11:29 conf_exten_check.php
-rwxrwxrwx  1 root root   1620 2008-03-14 18:30 dbconnect.php
drwxrwxrwx  2 root root  12288 2008-03-11 13:03 images
-rwxrwxrwx  1 root root  14103 2007-05-28 11:29 inbound_popup.php
-rwxrwxrwx  1 root root   9115 2007-05-28 11:29 live_exten_check.php
-rwxrwxrwx  1 root root  44618 2007-05-28 11:29 manager_send.php
-rwxrwxrwx  1 root root   4425 2007-05-28 11:29 park_calls_display.php
lrwxrwxrwx  1 root root      9 2008-03-27 21:24 project_auth_entries.txt -> /dev/null
-rwxrwxrwx  1 root root  91204 2007-05-28 11:29 vdc_db_query.php
lrwxrwxrwx  1 root root      9 2008-03-27 21:35 vicidial_auth_entries.txt -> /dev/null
-rwxrwxrwx  1 root root  11472 2008-05-13 22:02 vicidial_debug.txt
-rwxrwxrwx  1 root root 268192 2008-05-27 12:08 vicidial.php
-rwxrwxrwx  1 root root 268092 2007-05-28 13:36 vicidial.php.backup
-rwxrwxrwx  1 root root   4156 2007-05-28 11:29 voicemail_check.php


2. astguiclient directory

Code: Select all

# ls -al astguiclient/
total 20
drwxrwxrwx  2 root root 4096 2008-03-11 13:05 .
drwxr-xr-x 16 root root 4096 2008-05-27 12:16 ..


3. vicidial directory

Code: Select all

# ls -al vicidial/
total 4276
drwxrwxrwx  4 root root    4096 2008-03-27 21:27 .
drwxr-xr-x 16 root root    4096 2008-05-27 12:16 ..
lrwxrwxrwx  1 root root       9 2008-03-27 21:27 admin_changes_log.txt -> /dev/null
-rwxrwxrwx  1 root root   25143 2007-05-28 11:29 admin_modify_lead.php
-rwxrwxrwx  1 root root  521512 2007-05-28 11:29 admin.php
-rwxrwxrwx  1 root root    7851 2007-05-28 11:29 admin_search_lead.php
drwxrwxrwx  2 root root    4096 2008-03-11 12:52 agent_reports
-rwxrwxrwx  1 root root    3566 2007-05-28 11:29 AST_admin_log_display.php
-rwxrwxrwx  1 root root   11204 2007-05-28 11:29 AST_agent_disposition.php
-rwxrwxrwx  1 root root   19928 2007-05-28 11:29 AST_agent_performance_detail.php
-rwxrwxrwx  1 root root    9731 2007-05-28 11:29 AST_agent_performance.php
-rwxrwxrwx  1 root root   11894 2007-05-28 11:29 AST_agent_time_sheet_archive.php
-rwxrwxrwx  1 root root   11862 2007-05-28 11:29 AST_agent_time_sheet.php
-rwxrwxrwx  1 root root   16850 2007-05-28 11:29 AST_CLOSERstats.php
-rwxrwxrwx  1 root root    5594 2007-05-28 11:29 AST_inboundEXTstats_department.php
-rwxrwxrwx  1 root root   14704 2007-05-28 11:29 AST_inboundEXTstats.php
-rwxrwxrwx  1 root root   13875 2007-05-28 11:29 AST_parkstats.php
-rwxrwxrwx  1 root root   11597 2007-05-28 11:29 AST_server_performance.php
-rwxrwxrwx  1 root root    8516 2007-05-28 11:29 AST_timeonpark.php
-rwxrwxrwx  1 root root   33275 2007-05-28 11:29 AST_timeonVDADall.php
-rwxrwxrwx  1 root root   39587 2007-05-28 11:29 AST_timeonVDADallREC.php
-rwxrwxrwx  1 root root   15345 2007-05-28 11:29 AST_timeonVDADallSUMMARY.php
-rwxrwxrwx  1 root root   14424 2007-05-28 11:29 AST_timeonVDAD.php
-rwxrwxrwx  1 root root   20520 2007-05-28 11:29 AST_VDADstats.php
-rwxrwxrwx  1 root root    5351 2007-05-28 11:29 AST_VICIDIAL_hopperlist.php
-rwxrwxrwx  1 root root   15271 2007-05-28 11:29 closer_dispo.php
-rwxrwxrwx  1 root root   17621 2007-05-28 11:29 closer-fronter_popup2.php
-rwxrwxrwx  1 root root   20688 2007-05-28 11:29 closer-fronter_popup.php
-rwxrwxrwx  1 root root   13023 2007-05-28 11:29 closer.php
-rwxrwxrwx  1 root root   17146 2007-05-28 11:29 closer_popup.php
-rwxrwxrwx  1 root root       8 2007-05-28 11:29 count.htm
-rwxrwxrwx  1 root root    1614 2008-03-14 18:31 dbconnect.php
-rwxrwxrwx  1 root root    8646 2007-05-28 11:29 group_hourly_stats.php
-rwxrwxrwx  1 root root     492 2007-05-28 11:29 help.gif
-rwxrwxrwx  1 root root    2406 2007-05-28 11:29 listloaderMAIN.php
-rwxrwxrwx  1 root root   31605 2007-05-28 11:29 listloader.php
-rwxrwxrwx  1 root root   27945 2007-05-28 11:29 listloader.pl
-rwxrwxrwx  1 root root    4565 2007-05-28 11:29 listloader_rowdisplay.pl
-rwxrwxrwx  1 root root 1656087 2008-05-28 17:29 listloader_stmts.txt
-rwxrwxrwx  1 root root   28168 2007-05-28 11:29 listloader_super.pl
-rwxrwxrwx  1 root root     605 2007-05-28 11:29 log_test.php
-rwxrwxrwx  1 root root   67549 2007-05-28 11:29 new_listloader_superL.php
-rwxrwxrwx  1 root root    9836 2007-05-28 11:29 phone_stats.php
drwxrwxrwx  2 root root   12288 2008-03-25 16:06 ploticus
lrwxrwxrwx  1 root root       9 2008-03-27 21:22 project_auth_entries.txt -> /dev/null
-rwxrwxrwx  1 root root    5539 2007-05-28 11:29 record_conf_1_hour.php
-rwxrwxrwx  1 root root   14938 2007-05-28 11:29 remote_dispo.php
-rwxrwxrwx  1 root root   13373 2007-05-28 11:29 user_stats.php
-rwxrwxrwx  1 root root    6969 2007-05-28 11:29 user_status.php
-rwxrwxrwx  1 root root   22872 2007-05-28 11:29 vdremote.php
-rwxrwxrwx  1 root root 1169077 2008-05-28 17:29 vicidial_temp_file.txt
-rwxrwxrwx  1 root root   11438 2007-05-28 11:29 voice_lab.php
-rwxrwxrwx  1 root root   12708 2007-05-28 11:29 vtiger_search.php
-rwxrwxrwx  1 root root    1074 2007-05-28 11:29 welcome.php


As you can see, everybody has access to theses directories; and that means security issues.

How can I restrict more the access to these directories, taking care of the vicidial_temp_file.txt file to load leads without troubles?

thanks

Here is what default install has :

b-1:/var/www/apache2-default# ls -alihs *
17587 4.0K -rw-r--r-- 1 root root 2.2K 2005-12-14 16:25 apache_pb22_ani.gif
17588 4.0K -rw-r--r-- 1 root root 2.4K 2005-12-14 16:25 apache_pb22.gif
17589 4.0K -rw-r--r-- 1 root root 1.5K 2005-12-14 16:25 apache_pb22.png
17584 4.0K -rw-r--r-- 1 root root 2.3K 2004-11-20 20:16 apache_pb.gif
17585 4.0K -rw-r--r-- 1 root root 1.4K 2004-11-20 20:16 apache_pb.png
17586 4.0K -rw-r--r-- 1 root root 20 2008-05-11 18:23 index.php

and I guess its -rw-r--r-- what you're looking for.
I even think -rw------ works too.

What about of vicidial_temp_file.txt file?

If it is a link to /dev/null ... who cares ?

pylinuxian wrote:If it is a link to /dev/null ... who cares ?

What link?

The vicidial_temp_file.txt file is to load leads. How did you create that link?

Could you share the output of the following commands?

#ls -al agc
#ls -al astguiclient
#ls -al vicidial

oops ... thought you said : project_auth_entries.txt
1 root root 9 2008-03-27 21:24 project_auth_entries.txt -> /dev/null

Please help
If I have the following permissions in the vicidial directory

Code: Select all

[root@WebServer htdocs]# ls -al vicidial/
total 4276
drwxrwxrwx  4 root root    4096 2008-03-27 21:27 .
drwxr-xr-x 16 root root    4096 2008-05-27 12:16 ..
lrwxrwxrwx  1 root root       9 2008-03-27 21:27 admin_changes_log.txt -> /dev/null
-rw-r--r--  1 root root   25143 2007-05-28 11:29 admin_modify_lead.php
-rw-r--r--  1 root root  521512 2007-05-28 11:29 admin.php
-rw-r--r--  1 root root    7851 2007-05-28 11:29 admin_search_lead.php
drw-r--r--  2 root root    4096 2008-03-11 12:52 agent_reports
-rw-r--r--  1 root root    3566 2007-05-28 11:29 AST_admin_log_display.php
-rw-r--r--  1 root root   11204 2007-05-28 11:29 AST_agent_disposition.php
-rw-r--r--  1 root root   19928 2007-05-28 11:29 AST_agent_performance_detail.php
-rw-r--r--  1 root root    9731 2007-05-28 11:29 AST_agent_performance.php
-rw-r--r--  1 root root   11894 2007-05-28 11:29 AST_agent_time_sheet_archive.php
-rw-r--r--  1 root root   11862 2007-05-28 11:29 AST_agent_time_sheet.php
-rw-r--r--  1 root root   16850 2007-05-28 11:29 AST_CLOSERstats.php
-rw-r--r--  1 root root    5594 2007-05-28 11:29 AST_inboundEXTstats_department.php
-rw-r--r--  1 root root   14704 2007-05-28 11:29 AST_inboundEXTstats.php
-rw-r--r--  1 root root   13875 2007-05-28 11:29 AST_parkstats.php
-rw-r--r--  1 root root   11597 2007-05-28 11:29 AST_server_performance.php
-rw-r--r--  1 root root    8516 2007-05-28 11:29 AST_timeonpark.php
-rw-r--r--  1 root root   33275 2007-05-28 11:29 AST_timeonVDADall.php
-rw-r--r--  1 root root   39587 2007-05-28 11:29 AST_timeonVDADallREC.php
-rw-r--r--  1 root root   15345 2007-05-28 11:29 AST_timeonVDADallSUMMARY.php
-rw-r--r--  1 root root   14424 2007-05-28 11:29 AST_timeonVDAD.php
-rw-r--r--  1 root root   20520 2007-05-28 11:29 AST_VDADstats.php
-rw-r--r--  1 root root    5351 2007-05-28 11:29 AST_VICIDIAL_hopperlist.php
-rw-r--r--  1 root root   15271 2007-05-28 11:29 closer_dispo.php
-rw-r--r--  1 root root   17621 2007-05-28 11:29 closer-fronter_popup2.php
-rw-r--r--  1 root root   20688 2007-05-28 11:29 closer-fronter_popup.php
-rw-r--r--  1 root root   13023 2007-05-28 11:29 closer.php
-rw-r--r--  1 root root   17146 2007-05-28 11:29 closer_popup.php
-rw-r--r--  1 root root       8 2007-05-28 11:29 count.htm
-rw-r--r--  1 root root    1614 2008-03-14 18:31 dbconnect.php
-rw-r--r--  1 root root    8646 2007-05-28 11:29 group_hourly_stats.php
-rw-r--r--  1 root root     492 2007-05-28 11:29 help.gif
-rw-r--r--  1 root root       0 2008-03-11 12:57 index.html
-rw-r--r--  1 root root    2406 2007-05-28 11:29 listloaderMAIN.php
-rw-r--r--  1 root root   31605 2007-05-28 11:29 listloader.php
-rw-r--r--  1 root root   27945 2007-05-28 11:29 listloader.pl
-rw-r--r--  1 root root    4565 2007-05-28 11:29 listloader_rowdisplay.pl
-rw-r--r--  1 root root 1656087 2008-05-28 17:29 listloader_stmts.txt
-rw-r--r--  1 root root   28168 2007-05-28 11:29 listloader_super.pl
-rw-r--r--  1 root root     605 2007-05-28 11:29 log_test.php
-rw-r--r--  1 root root   67549 2007-05-28 11:29 new_listloader_superL.php
-rw-r--r--  1 root root    9836 2007-05-28 11:29 phone_stats.php
drw-r--r--  2 root root   12288 2008-03-25 16:06 ploticus
lrwxrwxrwx  1 root root       9 2008-03-27 21:22 project_auth_entries.txt -> /dev/null
-rw-r--r--  1 root root    5539 2007-05-28 11:29 record_conf_1_hour.php
-rw-r--r--  1 root root   14938 2007-05-28 11:29 remote_dispo.php
-rw-r--r--  1 root root   13373 2007-05-28 11:29 user_stats.php
-rw-r--r--  1 root root    6969 2007-05-28 11:29 user_status.php
-rw-r--r--  1 root root   22872 2007-05-28 11:29 vdremote.php
-rw-r--r--  1 root root 1169077 2008-05-28 17:29 vicidial_temp_file.txt
-rw-r--r--  1 root root   11438 2007-05-28 11:29 voice_lab.php
-rw-r--r--  1 root root   12708 2007-05-28 11:29 vtiger_search.php
-rw-r--r--  1 root root    1074 2007-05-28 11:29 welcome.php


I have these warnings in the vicidial.php page

Code: Select all

Warning: fopen(./project_auth_entries.txt) [function.fopen]: failed to open stream: Permission denied in /usr/local/apache2/htdocs/vicidial/admin.php on line 1025

Warning: fwrite(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/admin.php on line 1084

Warning: fclose(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/admin.php on line 1085

Warning: Cannot modify header information - headers already sent by (output started at /usr/local/apache2/htdocs/vicidial/admin.php:1025) in /usr/local/apache2/htdocs/vicidial/admin.php on line 1098


Why is this happening?
the following permissions is for project_auth_entries.txt file

Code: Select all

lrwxrwxrwx  1 root root       9 2008-03-27 21:22 project_auth_entries.txt -> /dev/null


thanks

did you run install.pl from your vicidial source directory? if so then you dont need to worry about the permissions.

you seem to have changed default permissions.
So
You could browse the web for apache2 stuff ... you will learn something new,
OR
you could remove (rm -Rf /var/www/*) everything & re-install Vicidial again & keep the files as they are & you should be ok since everybody does it that way & have no problems.
one other thing is that apache2 is as secure as you want it to & maybe far more than you ever thought security could go, so just stick to default configs & you will be another happy user of apache
OR
it could be some perl module that is missing.

This is the solution that I am figuring out

Here it is:

Code: Select all

# chmod 777 vicidial/
# cd vicidial/
# chmod -R 644 *
# chmod 777 agent_reports/
# chmod 777 ploticus/
# cd ../
# chmod 777 agc/
# cd agc/
# chmod -R 644 *
# chmod 777 images/


plus:

1. I changed the WWW writable in the admin.php server settings to "0" (admin.php -> Admin -> System Settings -> Webroot Writable)

2. I wrote "$WeBRooTWritablE = '0';" at the bottom of the dbconnect.php files

But I still have something that is bothering me. When I go to users -> STATS or users -> STATUS, I have the following messages:

Code: Select all

Warning: fopen(./project_auth_entries.txt) [function.fopen]: failed to open stream: Permission denied in /usr/local/apache2/htdocs/vicidial/user_stats.php on line 47

Warning: fwrite(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_stats.php on line 68

Warning: fclose(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_stats.php on line 69


OR

Code: Select all

Warning: fopen(./project_auth_entries.txt) [function.fopen]: failed to open stream: Permission denied in /usr/local/apache2/htdocs/vicidial/user_status.php on line 47

Warning: fwrite(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_status.php on line 69

Warning: fclose(): supplied argument is not a valid stream resource in /usr/local/apache2/htdocs/vicidial/user_status.php on line 70


Matt
How can I solve these warnings?
Obviously, without telling DON'T SHOW WARNING MESSAGES to the php.ini

Thanks

astguiclient version?

mflorell wrote:astguiclient version?

astguiclient 2.0.3

I believe this was one of the bugs in that release. You might want to upgrade to 2.0.4.1rc2.