[Gllug] Apache / permissions

Paul Brazier pbrazier at cosmos-uk.co.uk
Tue Nov 6 13:19:02 UTC 2001


I've got Apache set up for various virtual servers which are to be
managed by separate users.

It's set up so that each user's webspace is in their home directory
under www/htdocs.
User have ftp access to this directory in a "chroot jail" but no shell
access.
Apache wouldn't process the web pages until the /home/paul directory was
set to "chgrp apache" and paul was added to the apache group.

I've got a feeling this is insecure but I'm not sure exactly why or what
would be a better scheme for this type of situation. Could members of
the apache group stop apache running if they gained shell access or
something?

What's the usual way to do this sort of thing?

--
Paul Brazier
Cosmos UK 


**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the originator.

This footnote also confirms that this email message has been checked
for the presence of computer viruses.

**********************************************************************


-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug




More information about the GLLUG mailing list