Re: [SLUG] Clients accessing web server

Wed, 25 Mar 2009 12:23:21 -0700 

On Wed, 25 Mar 2009 21:07:23 +1000
Rick Phillips <r...@greyheads.net> wrote:
Hi,

> I have a small mail and web server which is used by some paying
> customers and also some friends.  It currently is running Mandriva
> Server 3 which is getting old and I am in the throws of setting up a new
> server using Centos 5.2.
> 
> Most of the web based stuff that I serve is based on Joomla but one
> customer has had a professional web designer create a new site for him
> which I have uploaded and all is working just fine.
> 
> I have never allowed FTP, SFTP nor SSH access to the server for security
> reasons (other than myself) but this customer wants to directly edit his
> new web site from time to time.  I don't run C Panel (can't afford it)
> nor can I run ISPConfig which has some features missing such as mailing
> lists which a couple of clubs I host use.  I am looking for suggestions
> as to what members might think would be an easy but secure way for this
> customer to do what he wants to do - make changes to his web site
> directly on the server.
> 
> I run name based virtual domains and I guess I could set all other
> folders which other customers use with chmod 700 and perhaps set up his
> folder as 750 and make his username part of the apache group.  I would
> then make his home area his web page folder but I am looking for a
> better way - if there is one.
> 
> Would webdav be the ticket although I have never successfully set this
> up or is it just as easy for him to use an FTP client using SFTP to
> access his web root and make changes?
> 
Webdav (with https for security ) could help you here but with chroot
capabilities in openssh you could allow the user in via ssh
or sftp and chroot them to their $HOME. This way they don't get to see
who else is on your server.
http://blogs.techrepublic.com.com/opensource/?p=229 has all the info
you should need.

> Thanks, 
> 
> Rick

HTH

-- 
Regards
Mick Pollard ( lunix )
------------------------------------------------
BOFH Excuse of the day:
Dynamic Integrity Invalidation Signal

Attachment: pgp3P2dnzhZVl.pgp
Description: PGP signature

-- 
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html

Reply via email to