apache permission problem please help
Nathan Kinkade
nkinkade at ub.edu.bz
Tue Aug 24 15:18:01 PDT 2004
On Tue, Aug 24, 2004 at 03:09:04PM -0600, RYAN vAN GINNEKEN wrote:
> SEE ERROR BELOW
>
> Was playing with permissions on my home dirs last night and changed
> everything to chmod 700 had some problem with users looking at and
> copying other users webpages. I have a directory in each users home
> dir named www where they keep there web files ie
> /usr/home/username/www so i guess when i changed everything to 700
> apache was unable to use these files.
>
> Now i have tried the best i can to change everything back set to
> chmod to 655 and even tried moving a site to /usr/local/www/username
> in hope that apache could read it there but no luck what has happened
> please help.
>
> Wait now things have started to work, for the web site that i moved to
> /usr/local/www/username. There seems to be some lag after i make
> changes to the permissions and restart apache is this possible.
>
> I have a real mess on my hands now guess i will have to play with
> permissions and modes now to get all the sites backup. How do i set
> up home directories that are secure for each user ie other users on
> the system cannot read them but apache can. Should i move all web
> pages to the /usr/local/www dir. Also is there some way to automate
> this so that when i create a new user or modify a file things will
> work correctly. Have been using UNIX for many years finally got up
> the courage to play with modes and perms. Guess i shot myself in the
> foot like i have been warned about by many people and docs.
<snip>
A better approach would be to set each users home dir itself to 700
permissions, not necessarily all the files and directories in each users
dir. Are you using a httpd.conf directive such as
<Directory /home/*/public_html> to allow users to publish files from
their home dir, or are you putting sym links in the web root?
Nathan
--
PGP Public Key: pgp.mit.edu:11371/pks/lookup?op=get&search=0xD8527E49
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20040824/2a338b38/attachment.bin
More information about the freebsd-questions
mailing list