Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report. Summary: Review Request: horde - php application framework https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=189195 ------- Additional Comments From enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx 2006-04-18 08:05 EST ------- * config files MUST not be under /usr; place them under /etc or /var (see below) * horde requires write access to the config files (they are editable through the web interface); so permissions should be 0660 for root:apache or even apache ownership. These files should be located under /var Perhaps location of the config files can be changed in the code, perhaps you have to use symlinks for that * the 'locale/*/horde.mo' files should be annotated with the corresponding %lang() tags; it would be probably the best to move them to the %regular /usr/share/locale and run '%find_lang horde' * docs/ should be removed and packaged like | %doc docs/* * it might be a good idea to restrict the initial visibility of Horde to localhost; e.g. by adding | <Directory /usr/share/horde> | Allow from 127.0.0.1 | Deny from all | </Directory> to the apache configuration. What is with the authentication during the initial setup? Is there a non-default password required for the 'Administrator' user? If not, some modifications shall be done to avoid that an unconfigured Horde installation can be run by unauthorized users. -- Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact.