But what happens now if you allow every user to run scripts through
suexec beneath public_html?
that means they have to own their public_html directory and thus
always can change the access bits
and delete it, causing the server to refuse restarting?
regards
/Roger
--
Roger Abrahamsson
On Wed, 10 Jul 2002, Roger Abrahamsson wrote:
But what happens now if you allow every user to run scripts through
suexec beneath public_html?
that means they have to own their public_html directory and thus
always can change the access bits
and delete it, causing the server to refuse
--On Freitag, 5. Juli 2002 11:38 +1000 Jason Lim [EMAIL PROTECTED]
wrote:
But won't rmdir . succeed if they are in the public_html directory?
rmdirs _below_ client1/site1/cgi-bin/ and client1/site1/htdocs/ would
all work.
rmdirs of client1/site1/htdocs/, or client1/site1/cgi-bin/ themselves
will
But what happens now if you allow every user to run scripts through
suexec beneath public_html?
that means they have to own their public_html directory and thus
always can change the access bits
and delete it, causing the server to refuse restarting?
regards
/Roger
--
Roger Abrahamsson
Sys/Net
On Wed, 10 Jul 2002, Roger Abrahamsson wrote:
But what happens now if you allow every user to run scripts through
suexec beneath public_html?
that means they have to own their public_html directory and thus
always can change the access bits
and delete it, causing the server to refuse
On Fri, Jul 05, 2002 at 01:42:33PM +1000, Donovan Baarda wrote:
On Fri, Jul 05, 2002 at 01:33:55PM +1000, Donovan Baarda wrote:
[...]
This allows root to create other directories in public_html like
public_html that cannot be deleted by abo. The o+t,g+s combo is a nice
^
Ugh, should be
On Fri, Jul 05, 2002 at 09:03:02AM +1000, Jason Lim wrote:
If the user deletes /home/username/log, or public_html, Apache won't load.
And it doesn't give a useful error most times unless you start
investigating. There doesn't seem a way to make Apache handle the
situation gracefully, by either
Hi all,
The users that know too much keep on deleting their directories that
Apache uses to load up files from.
For example, assume the user directory is /home/username/public_html (for
the HTML docs), and /home/username/log (for the LOG files).
If the user deletes /home/username/log, or
On Fri, 05 Jul 2002, Jason Lim wrote:
The users that know too much keep on deleting their directories that
Apache uses to load up files from.
For example, assume the user directory is /home/username/public_html (for
the HTML docs), and /home/username/log (for the LOG files).
So, how would
Sent: Friday, July 05, 2002 9:20 AM
Subject: Re: Users deleting public_html and log causing Apache to fail
startup
On Fri, 05 Jul 2002, Jason Lim wrote:
The users that know too much keep on deleting their directories that
Apache uses to load up files from.
For example, assume the user directory
On Fri, 05 Jul 2002, Jason Lim wrote:
log directory read only
Yeap... that can be done easily... chmod a-w log.
The user may not remove their document root
How do you do that, while allowing them full access to that directory?
They don't have write access to its parent directory:
On Thu, 04 Jul 2002, Chris Wagner wrote:
On Fri, 05 Jul 2002, Jason Lim wrote:
They don't have write access to its parent directory:
[EMAIL PROTECTED]:~/test$ mkdir public_html
[EMAIL PROTECTED]:~/test$ sudo chown root. .
[EMAIL PROTECTED]:~/test$ rmdir public_html
rmdir: `public_html':
@lists.debian.org
Sent: Friday, July 05, 2002 11:12 AM
Subject: Re: Users deleting public_html and log causing Apache to fail
startup
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
On Fri, Jul 05, 2002 at 11:38:53AM +1000, Jason Lim wrote:
But won't rmdir . succeed if they are in the public_html directory?
[...]
I was just thinking about (using your examples) making the htdocs and
cgi-bin directories immutable (+i). However, I am not very familiar with
using those flags
You can make 3 predefined directories for each customer that they can't
delete. One htdocs, logs, and stuff or something, for them to put all the
non web accessible stuff in.
Another thing you can do is create a wrapper script for the Apache startup
that checks for the existence of all the
On Fri, Jul 05, 2002 at 01:33:55PM +1000, Donovan Baarda wrote:
On Fri, Jul 05, 2002 at 11:38:53AM +1000, Jason Lim wrote:
[...]
Given this, I would suggest something like this for an example user abo;
minkirri:~$ dl
total 2
drwxrws--t4 root abo81 Jul 5 13:13 ./
On Fri, Jul 05, 2002 at 01:42:33PM +1000, Donovan Baarda wrote:
On Fri, Jul 05, 2002 at 01:33:55PM +1000, Donovan Baarda wrote:
[...]
This allows root to create other directories in public_html like
public_html that cannot be deleted by abo. The o+t,g+s combo is a nice
^
Ugh, should be
17 matches
Mail list logo