Created attachment 161309 [details] Patch maia chowns its WWWDIR from Makefile. This is broken - owner should be set from pkg-plist. The patch fixes this. Actually though, WWWDIR (apart from directories which require write access) should not be owned by www at all and this is a security problem.
A commit references this bug: Author: amdmi3 Date: Thu Oct 8 13:19:42 UTC 2015 New revision: 398821 URL: https://svnweb.freebsd.org/changeset/ports/398821 Log: - Move file owner handling to plist, fix stage as non-root PR: 203287 Submitted by: amdmi3 Approved by: maintainer timeout (ek@purplehat.org, 2 weeks) Changes: head/security/maia/Makefile head/security/maia/pkg-plist
Created attachment 161828 [details] Patch to remove CHOWN in Makefile and adjust permissions in www dir.
Thanks for pointing this out Dmitry. I've applied your patch as well as removed the group and ownership changes in the www directory that aren't needed.