Fix permissions of nginx log dirs, CVE-2016-1247
CVE-2016-1247 is a symlink attack on the log dir of nginx since a
reopening of the logs (triggered by logrotate) opens the logs as nginx
instead of root. logrotate creates the proper log files already so
nginx doesn't need write permissions to those directories.
Signed-off-by:
Florian Pritz <bluewind@xinu.at>
Please register or sign in to comment