Bug #6862: mode 0444 for /var/etc/cert.crt leads to nginx crit error: 13: Permission denied - pfSense - pfSense bugtracker

Actions

Copy link

Bug #6862

closed

mode 0444 for /var/etc/cert.crt leads to nginx crit error: 13: Permission denied

Added by Harry Coin over 7 years ago. Updated over 6 years ago.

Status:

Resolved

Priority:

Normal

Assignee:

Renato Botelho

Category:

Web Interface

Target version:

2.4.0

Start date:

10/18/2016

Due date:

% Done:

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

2.3.2

Affected Architecture:

All

Description

/var/etc/cert.crt has mode 0444, leading to
/var/log/nginx-error.log entries like
2016/10/16 16:06:14 [crit] 61476#100169: *271 SSL_write() failed (SSL:) (13: Permission denied) while sending to client, client: 192.168.29.45, server: , request: "POST /diag_resetstate.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm.socket", host: "192.168.XX.2", referrer: "https://192.168.XX.2/diag_resetstate.php"

and

2016/10/16 16:06:14 [crit] 61476#100169: *271 SSL_write() failed (SSL:) (13: Permission denied) while sending to client, client: 192.168.29.45, server: , request: "POST /diag_resetstate.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm.socket", host: "192.168.XX.2", referrer: "https://192.168.XX.2/diag_resetstate.php"

adding the shellcmd

chmod go+r /var/etc/cert.crt

is a work-around.