Apache and home directories (file browser).
Andy Dills
andy at xecu.net
Mon Feb 16 14:31:17 PST 2004
On Mon, 16 Feb 2004, Lewis Thompson wrote:
> I think this is what I'm looking for, yes. Since I posted this I asked
> some questions on IRC and somebody mentioned that Apache can be chrooted
> to the uid of a script's owner (similar in a way to safe_mode in PHP).
> This would surely then allow files to be read/written by Apache in a
> secure fashion.
>
> My worry here is that Apache would have to be running as root to
> chroot -- can anybody confirm this for me? (Indeed, can anybody confirm
> that it is even possible to do this?)
While you can chroot apache, that's serverwide, not per-virtualhost.
If I were you and I wanted to do what you're talking about, I'd use suexec
with perl scripts. AFAIK, that's the only way to do it correctly.
Andy
---
Andy Dills
Xecunet, Inc.
www.xecu.net
301-682-9972
---
More information about the freebsd-isp
mailing list