Hi Bart, I don't want the directories to be world readable because the scripts can contain sensitive data (eg. php scripts with logins for databases).
Martijn de Munnik On Mar 21, 2008, at 2:41 AM, Bart Smaalders wrote: > Martijn de Munnik wrote: >> Hi, >> I'm having a problem with the system limit NGROUPS_UMAX. I'm using >> apache with suexec to isolate users from each other. Each user has >> its own group and apache is running as nobody. To give apache >> access to the users public_html directory I add the usersgroup as >> secondary group to nobody >> part of /etc/group: >> domainuser001::1031:nobody >> domainuser002::1032:nobody >> domainuser003::1033:nobody >> domainuser004::1034:nobody >> domainuser005::1035:nobody >> domainuser006::1036:nobody >> domainuser007::1037:nobody >> only we've got more then 16 or 32 domainusers... >> I was thinking of a solution with zfs acl so I can give read access >> to each public_html directoy. Anybody done this before of maybe >> another solution. >> thanks, > > I must be missing something - why not leave it up to users to make > their ~user/public_html > directories world readable if they want their content visible? > > - Bart > > > > -- > Bart Smaalders Solaris Kernel Performance > barts at cyber.eng.sun.com http://blogs.sun.com/barts > "You will contribute more with mercurial than with thunderbird."
