DEPRECATION WARNING

This documentation is not using the current rendering mechanism and is probably outdated. The extension maintainer should switch to the new system. Details on how to use the rendering mechanism can be found here.

EXT: Readable name of your extension

Created:2010-02-18T17:33:18
Changed:2012-08-23T14:42:26
Classification:extensionkey
Description:The keywords help with categorizing and tagging of the manuals. You can combine two or more keywords and add additional keywords yourself. Please use at least one keyword from both lists. If your manual is NOT in english, see next tab "language" ---- forEditors (use this for editors / german "Redakteure") forAdmins (use this for Administrators) forDevelopers (use this for Developers) forBeginners (manuals covering TYPO3 basics) forIntermediates (manuals going into more depth) forAdvanced (covering the most advanced TYPO3 topics) see more: http://wiki.typo3.org/doc_template#tags ----
Keywords:keywords comma-separated
Author:Author Name
Email:your@email.com
Info 4:
Language:en

img-1 EXT: TYPO3 Security- a3_securityEXT: TYPO3 Security

EXT: TYPO3 Security

Extension Key: a3_security

Language: en, sl, si

Keywords: security, aeris3, permissions

Copyright 2012, Robert Ferencek, <rferencek@aeris3.si>

This document is published under the Open Content License available from http://www.opencontent.org/opl.shtml

The content of this document is related to TYPO3 - a GNU/GPL CMS/Framework available from www.typo3.org

Table of Contents

EXT: TYPO3 Security 1

`Introduction 3 <#__RefHeading__722_2028123520>`_

What does it do? 3

Screenshots 3

`Users manual 4 <#__RefHeading__728_2028123520>`_

`Administration 5 <#__RefHeading__730_2028123520>`_

`Configuration 6 <#__RefHeading__732_2028123520>`_

Reference 6

`Tutorial 7 <#__RefHeading__736_2028123520>`_

`Known problems 8 <#__RefHeading__738_2028123520>`_

`To-Do list 9 <#__RefHeading__740_2028123520>`_

`ChangeLog 10 <#__RefHeading__742_2028123520>`_

Introduction

What does it do?

This extension allows you to enable apache write permissions on on typo3conf/ext, typo3conf/localconf.php, typo3conf/extTables.php and other user defined files or folders with help of a bash script.

Screenshots

BE module

img-2

Key protection configuration

img-3

Users manual

  • This extension allows you to enable apache write permissions on typo3conf/ext, typo3conf/localconf.php, typo3conf/extTables.php and other user defined files or folders with help of a bash script.
  • Only TYPO3 admins are allowed to run the BE module.

Administration

  • After installing the extension make sure to copy the typo3_permission_handler.sh.example to your scripts folder and rename the file to typo3_permisson_handler.sh.
  • Change the bash script configuration to your server specifications.
  • Add the bash script to servers cron job.

Configuration

  • After installing the extension make sure to copy the a3_security/res/typo3_permission_handler.sh.example file to your scripts folder and rename the file to typo3_permisson_handler.sh.
  • Change the bash script configuration to your server specifications.
  • Add the bash script to servers cron job.

Bash script reference

#!/bin/bash

Property

#!/bin/bash

Description

Shell type

Default

#!/bin/bash

REPORT_MAIL

Property

REPORT_MAIL

Description

Email where to send the enable/disable reports to

Default

MAIL_FROM

Property

MAIL_FROM

Description

From email

Default

MAIL_TO_REPLY

Property

MAIL_TO_REPLY

Description

Email to reply to

Default

SEND_MAIL

Property

SEND_MAIL

Description

Send email after enable/disable apache write permissions

Default

0

CAT_CMD

Property

CAT_CMD

Description

Shell command “cat”

Default

/bin/cat

RM_CMD

Property

RM_CMD

Description

Shell command “rm”

Default

/bin/rm

FIND_CMD

Property

FIND_CMD

Description

Shell command “find”

Default

/bin/find

CLEAR_CMD

Property

CLEAR_CMD

Description

Shell command “clear”

Default

/usr/bin/clear

LS_CMD

Property

LS_CMD

Description

Shell command “ls”

Default

/bin/ls

SENDMAIL_CMD

Property

SENDMAIL_CMD

Description

Shell command “sendmail”

Default

/usr/sbin/sendmail

CHOWN_CMD

Property

CHOWN_CMD

Description

Shell command “shown”

Default

/bin/chown

CHMOD_CMD

Property

CHMOD_CMD

Description

Shell command “chmod”

Default

/bin/chmod

ROOT_DIR

Property

ROOT_DIR

Description

Path to directory where the web pages are stored

Default

/var/www/vhosts

DISABLE_AFTER

Property

DISABLE_AFTER

Description

Disable the apache write permissions in X minutes

Default

30

PERMISSIONS_FILE

Property

PERMISSIONS_FILE

Description

Permissions file created by a3_security extension (do not change!)

Default

ENABLE_PERMISSIONS

MAIN_DIR

Property

MAIN_DIR

Description

Main TYPO3 directory

Default

typo3conf

TEMP_DIR

Property

TEMP_DIR

Description

TYPO3 temp directory

Default

typo3temp

EXT_DIR

Property

EXT_DIR

Description

TYPO3 a3_security extension temp directory (do not change!)

Default

a3_security

ENABLE_CMD

Property

ENABLE_CMD

Description

Shell command to enable apache write permissions

Default

“See typo3_permisson_handler.sh”

DISABLE_CMD

Property

DISABLE_CMD

Description

Shell command to disable apache write permissions

Default

“See typo3_permisson_handler.sh”

ENABLE_MAIL_SUBJECT

Property

ENABLE_MAIL_SUBJECT

Description

Email subject when permissions are enabled

Default

TYPO3 write permissions - Priority 4

DISABLE_MAIL_SUBJECT

Property

DISABLE_MAIL_SUBJECT

Description

Email subject when permissions are disabled

Default

TYPO3 write permissions - Priority 5

ENABLE_MAIL_MESSAGE

Property

ENABLE_MAIL_MESSAGE

Description

Email message when permissions are enabled

Default

Write permissions enabled on

DISABLE_MAIL_MESSAGE

Property

DISABLE_MAIL_MESSAGE

Description

Email message when permissions are disabled

Default

Write permissions disabled on

Tutorial

  • Install the a3_security extension

  • Copy the a3_security/res/typo3_permission_handler.sh.example file to your scripts folder and rename the file to permisson_handler.sh. Make the file executable.

  • Change the bash script configuration to your server specifications. See b ash script reference .

  • Run the typo3_permisson_handler.sh manualy to see if the script runs without errors

  • Add the bash script to servers cron job to run every minute:

    * * * * * /path-to-bash/bash /path-to-your-scripts- folder/typo3_permission_handler.sh > /dev/null 2>&1

    Modify the crontab depending on your shell type. The script should run as root.

Known problems

None for now. The extension was tested with LAMP on CentOS and FreeBSD.

For any issues feel free to contact me on <rferencek@aeris3.si>

To-Do list

None

ChangeLog

1.0.0

Version

1.0.0

Changes

Initial release.

1.1.0

Version

1.1.0

Changes

New feature; Disabling Extension Manager if no write permissions.

1.1.1

Version

1.1.1

Changes

Small bug fixes.

1.2.0

Version

1.2.0

Changes

New feature; If enabled, admins have to enter the protection key to enable permissions.

10