-
-
Notifications
You must be signed in to change notification settings - Fork 4.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade fails if the config dir contains config.php~ file #8179
Comments
If i manually remove the file ending in ~ the upgrade works. |
Not supported as config file name. Please use anything that ends on |
Well the config file was not created by me, it was an automatic backup created by the editor i used. |
@gradinaruvasile Having a backup file of your config not ending in .php is a security issue because it would be readable by anyone in clear text. A RewriteRule in .htaccess normally prevents a client from accessing the file, but this only works on Apache and with mod_rewrite enabled. |
@Cybso I think the RewriteRule in .htaccess prevents a client from reading the whole folder "config", so this should not be a problem. |
@Nils160988 That's what I wrote. But it only works if:
Nextcloud would still work without these preconditions, but your config folder would not be protected anymore. |
@Cybso: Thank you for clarifying. |
The 'joe' terminal editor makes .xxx~ files automatically for backup. |
I tested this and could not reproduce the issue. Is this still the case for you? I will close the ticket for now. If it is still happening we can reopen the ticket. Please provide detailed steps that are needed to reproduce this behavior then. |
Steps to reproduce
Expected behaviour
Upgrade works
Actual behaviour
Upgrade fails
Server configuration
Operating system:
Debian 9
Web server:
Apache 2.4.25
Database:
MariaDB
PHP version:
7.0.27
Nextcloud version: (see Nextcloud admin page)
12.0.5
Updated from an older Nextcloud/ownCloud or fresh install:
Updated
Where did you install Nextcloud from:
Web
Signing status:
Signing status
List of activated apps:
App list
Enabled:
Disabled:
Nextcloud configuration:
Config report
{
"system": {
"passwordsalt": "REMOVED SENSITIVE VALUE",
"secret": "REMOVED SENSITIVE VALUE",
"trusted_domains": [
"REMOVED SENSITIVE VALUE"
],
"datadirectory": "/var/www/nextcloud/data",
"overwrite.cli.url": "REMOVED SENSITIVE VALUE",
"dbtype": "mysql",
"version": "12.0.5.3",
"dbname": "nextcloud",
"dbhost": "localhost",
"dbport": "3306",
"dbtableprefix": "oc_",
"mysql.utf8mb4": true,
"dbuser": "REMOVED SENSITIVE VALUE",
"dbpassword": "REMOVED SENSITIVE VALUE",
"installed": true,
"maintenance": false,
"updater.release.channel": "stable",
"instanceid": "oc4m6gf8llol",
"mail_smtpmode": "php",
"mail_smtpauthtype": "LOGIN",
"memcache.local": "\OC\Memcache\APCu",
"theme": "",
"loglevel": 2
}
}
Are you using external storage, if yes which one: local/smb/sftp/...
sftp
Are you using encryption: yes/no
no
Are you using an external user-backend, if yes which one: LDAP/ActiveDirectory/Webdav/...
no
LDAP configuration (delete this part if not used)
LDAP config
Client configuration
Browser:
Firefox 58
Operating system:
Debian 9/10
Logs
Web server error log
Web server error log
Nextcloud log (data/nextcloud.log)
Nextcloud log
Browser log
Browser log
The text was updated successfully, but these errors were encountered: