Ticket #6509 (new defect)

Opened 4 months ago

Last modified 5 days ago

swfupload problems

Reported by: SteveAgl Assigned to: anonymous
Priority: high Milestone: 2.9
Component: TinyMCE Version: 2.5
Severity: normal Keywords:
Cc:

Description

I got 2 problems with an italian hoster that has hundereds if not thousands users with a WP blog

1) Having mod_security on swfupload fails, the problem get solved using the method suggested at: http://wordpress.org/support/topic/162373?replies=12 inserting some lines in the .htaccess, I don't know if this could be solved making the uploader to degrade in a non swf uploader.

2) The hoster has suEXEC and we already solved a similar with Ryan with old uploader yeas ago. The directory are created with folowing permission: drwxr_x_ that make the file inside not readable, restoring sitewide permission from hosting CP the dir become drwxr_s_ and file get read correctly. This is a very bad problem that need solution

Change History

(follow-up: ↓ 2 ) 03/31/08 19:16:55 changed by lloydbudd

1) relates to #6406 ?

(in reply to: ↑ 1 ) 03/31/08 19:28:23 changed by SteveAgl

Replying to lloydbudd:

1) relates to #6406 ?

Look like it is... but there the solution is to have a plugin tha disable the flashuploader iI think hat if the problem is with mod_secutiry on the uploader can check it and degrade by itself if the case. Dont?

04/02/08 17:12:08 changed by SteveAgl

I checked the old ticket tah solved the same problem state here as #2 in late 2006 it was #2190 and that time changest [3501] solved the problem, thias was keep in new files function.php that subsittute the old admin-function.php where that code was and is used:

// Set correct file permissions $stat = @ stat( dirname( $new_file ) ); $perms = $statmode? & 0007777; $perms = $perms & 0000666; @ chmod( $new_file, $perms );

In media.php I've found:

// Set correct file permissions $stat = stat( dirname( $destfilename )); $perms = $statmode? & 0000666; //same permissions as parent folder, strip off the executable bits @ chmod( $destfilename, $perms );

That looks like it ognore se S flag or I'm wrong? maybe having same code as in function.php will solve the problem? No it dont'... i tried... but.. i feel the problem is around there.

07/15/08 16:24:07 changed by ryan

  • milestone changed from 2.5.2 to 2.9.

Milestone 2.5.2 deleted