From owner-freebsd-questions Wed Sep 6 1: 7:20 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mx6.port.ru (mx6.port.ru [194.67.23.42]) by hub.freebsd.org (Postfix) with ESMTP id 257DA37B423 for ; Wed, 6 Sep 2000 01:07:16 -0700 (PDT) Received: from hearst.int ([10.0.0.103] helo=hearst.mail.ru) by mx6.port.ru with esmtp (Exim 3.14 #47) id 13WaEl-0001kn-00 for freebsd-questions@freebsd.org; Wed, 06 Sep 2000 12:07:15 +0400 Received: from mail by hearst.mail.ru with local (Exim 3.14 #4) id 13WaEh-00067x-00 for freebsd-questions@freebsd.org; Wed, 06 Sep 2000 12:07:14 +0400 Received: from [194.105.213.4] by win.inbox.ru with HTTP; Wed, 06 Sep 2000 08:07:14 +0000 (GMT) From: "Simakin Alexandr" To: freebsd-questions@freebsd.org Subject: CHROOT FOR CGI-SCRIPTS? Mime-Version: 1.0 X-Mailer: mPOP Web-Mail 2.19 X-Originating-IP: [194.105.213.4] Reply-To: "Simakin Alexandr" Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 8bit Message-Id: Date: Wed, 06 Sep 2000 12:07:14 +0400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello! When I use /etc/ftpchroot file, I can restrict users access only to his home directory. Users can read and write files only in his home directory. So I need the same thing with users perl cgi-scripts on FreeBSD/Apache. I want users to run cgi-scripts (I know, how to do this) but I don't want to allow them to read and write to other directories out of his home directory. Does anybody knows how to do it? LET ME KNOW, PLEASE, IF IT IS IMPOSSIBLE! I don't want my server to be like this freehosting www.virtualave.net You may look at this hole: http://webator.virtualave.net/cgi-bin/dir.pl?dir=/ there CD - change dir, RD - read file. Thank you. Alex Simakin To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message