Details
-
Bug
-
Resolution: Won't Do
-
Minor
-
None
-
None
-
None
Description
INFO requests from JBoss EAP are denied when the underlying filesystem permissions are not permissive. Is it necessary for mod_manager to have search/execute permissions on underlying filesystem in order to accept an INFO request?
access_log:
127.0.0.1 - - [04/Oct/2017:15:47:17 -0400] "INFO / HTTP/1.1" 403 - "-" "ClusterListener/1.0"
error_log:
[Wed Oct 04 15:47:17.275236 2017] [:debug] [pid 15167] mod_manager.c(2338): manager_trans INFO (/) [Wed Oct 04 15:47:17.275280 2017] [authz_core:debug] [pid 15167] mod_authz_core.c(809): [client 127.0.0.1:51616] AH01626: authorization result of Require ip 127.0.0.1: granted [Wed Oct 04 15:47:17.275283 2017] [authz_core:debug] [pid 15167] mod_authz_core.c(809): [client 127.0.0.1:51616] AH01626: authorization result of <RequireAny>: granted [Wed Oct 04 15:47:17.275316 2017] [core:error] [pid 15167] (13)Permission denied: [client 127.0.0.1:51616] AH00035: access to /index.html denied (filesystem path '/opt/jbcs-httpd24-2.4/httpd') because search per missions are missing on a component of the path [Wed Oct 04 15:47:17.275333 2017] [core:error] [pid 15167] (13)Permission denied: [client 127.0.0.1:51616] AH00035: access to /index.html.var denied (filesystem path '/opt/jbcs-httpd24-2.4/httpd') because search permissions are missing on a component of the path [Wed Oct 04 15:47:17.275350 2017] [core:error] [pid 15167] (13)Permission denied: [client 127.0.0.1:51616] AH00035: access to /.noindex.html denied (filesystem path '/opt/jbcs-httpd24-2.4/httpd') because search
server.log:
15:48:17,283 ERROR [org.jboss.modcluster] (UndertowEventHandlerAdapter - 1) MODCLUSTER000042: Error null sending INFO command to localhost/127.0.0.1:6666, configuration will be reset: null