[Bug 189195] Review Request: horde - php application framework
bugzilla at redhat.com
bugzilla at redhat.com
Tue Apr 18 12:09:43 UTC 2006
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: Review Request: horde - php application framework
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189195
------- Additional Comments From enrico.scholz at informatik.tu-chemnitz.de 2006-04-18 08:05 EST -------
* config files MUST not be under /usr; place them under /etc or /var
(see below)
* horde requires write access to the config files (they are editable
through the web interface); so permissions should be 0660 for
root:apache or even apache ownership. These files should be located
under /var
Perhaps location of the config files can be changed in the code,
perhaps you have to use symlinks for that
* the 'locale/*/horde.mo' files should be annotated with the corresponding
%lang() tags; it would be probably the best to move them to the
%regular /usr/share/locale and run '%find_lang horde'
* docs/ should be removed and packaged like
| %doc docs/*
* it might be a good idea to restrict the initial visibility of Horde
to localhost; e.g. by adding
| <Directory /usr/share/horde>
| Allow from 127.0.0.1
| Deny from all
| </Directory>
to the apache configuration.
What is with the authentication during the initial setup? Is there
a non-default password required for the 'Administrator' user? If
not, some modifications shall be done to avoid that an unconfigured
Horde installation can be run by unauthorized users.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug, or are watching the QA contact.
More information about the Fedora-package-review
mailing list