Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 69820

Summary: Permissions leave nut-cgi clients basically unusable
Product: [Retired] Red Hat Linux Reporter: Michal Jaegermann <michal>
Component: nutAssignee: Than Ngo <than>
Status: CLOSED RAWHIDE QA Contact: Brian Brock <bbrock>
Severity: low Docs Contact:
Priority: medium    
Version: 7.3   
Target Milestone: ---   
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2003-02-11 23:03:24 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Michal Jaegermann 2002-07-25 18:54:01 UTC 
Description of Problem:
In a default installation if one will attempt to execute programs supplied
in 'nut-cgi' package they will run with "apache.apache" ownership.  The problem
is that before they will do something they need to get an information from
files in /etc/ups (in particular from /etc/ups/upsset.conf, to even start
to do something outside of an immediate exit, but not only) and most of these
are unreadable.  They should be at least readable to an "apache" group to be of
any use and then indeed nut-cgi clients can do something.

A some rudimentary documentation would also be nice.  Something which would
say, roughly, "Add in your httpd configuration an alias definition like
ScriptAlias /nut/ "/var/www/nut-cgi-bin/", restrict an access to it properly
and drop among your documents nut.html, say, with a content somewhat like that:

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML>
 <HEAD>
  <TITLE>NUT support</TITLE>
 </HEAD>
<!-- Background white -->
 <BODY BGCOLOR="#FFFFFF">

  <H1 ALIGN="CENTER">NUT tools (UPS access)</H1>
  The following UPS tools are available here
  <P>
  <A HREF="nut/multimon.cgi" >multimon.cgi</A>
  </P>

  <P>
  <A HREF="nut/upsimage.cgi" >upsimage.cgi</A>
  </P>

  <P>
  <A HREF="nut/upsset.cgi" >upsset.cgi</A>
  </P>

  <P>
  <A HREF="nut/upsstats.cgi" >upsstats.cgi</A>
  </P>

 </BODY>
</HTML>

Then you can try what these will do."

If we could have some description explaing what these are acutally _supposed_ 
to do, without referring to sources, that would be a riot.  'multimon.cgi' is
quite obvious.  What other are really doing, and/or what has to be configured
before they will become truly useful, is not entirely clear.

As things stand now 'rpm -qd nug-cgi' draws blank and typing 'grep -i cgi *'
in /usr/share/doc/nut-0.45.4/docs directory is not very illuminating either.
An advice there really boils down to "configure properly".  Indeed.

Version-Release number of selected component (if applicable):
nut-0.45.4-1
Comment 1 Ngo Than 2003-02-11 23:03:24 UTC 
it's fixed 1.2.0-5 or newer.