Opened 8 years ago

Last modified 9 months ago

#878 new enhancement

block system commands

Reported by: kjdon Owned by: nobody
Priority: moderate Milestone: 3.11 Release
Component: Greenstone3 Runtime Severity: enhancement
Keywords: Cc:

Description

Currently anyone can run system commands and reload/delete collections etc. Make this more secure.

Simple solution: Make it only available when logged in as admin.

More flexible solution: Have a setting for system commands:

  • allow none
  • allow all
  • allow only admin users

Change History (2)

comment:2 by kjdon, 9 months ago

Milestone: 3.10 Release3.11 Release

Ticket retargeted after milestone closed

Note: See TracTickets for help on using tickets.