From owner-freebsd-questions Fri Nov 19 17:38:58 1999 Delivered-To: freebsd-questions@freebsd.org Received: from sasknow.com (h139-142-245-96.ss.fiberone.net [139.142.245.96]) by hub.freebsd.org (Postfix) with ESMTP id 2328C14EFE for ; Fri, 19 Nov 1999 17:38:55 -0800 (PST) (envelope-from freebsd@sasknow.com) Received: from sasknow.com (ntstn [10.0.0.2]) by sasknow.com (8.9.3/8.9.3) with ESMTP id TAA91574; Fri, 19 Nov 1999 19:39:20 -0600 (CST) (envelope-from freebsd@sasknow.com) Message-ID: <3835FC78.EE4DA9CA@sasknow.com> Date: Fri, 19 Nov 1999 19:42:16 -0600 From: "Ryan Thompson [FreeBSD]" X-Mailer: Mozilla 4.7 [en] (WinNT; U) X-Accept-Language: en MIME-Version: 1.0 To: Aaron Sonntag Cc: freebsd-questions@FreeBSD.ORG Subject: Re: public_html admin perms? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Aaron Sonntag wrote: > > I created user accounts for each virtual domain > So a username would be > virtualdomain_com > the home directory would be > /home/virtualdomain_com > the pointer in the httpd.conf would be > /home/virtualdomain_com/public_html > > this way only the specific user and root have write permission to the > webpage directory > the user can have telnet and ftp access or however you want to do it... Perhaps I wasn't quite clear when I described the 'www' user in some detail. The www user is a single 'admin' account (non-superuser) designed to administer (and only administer) the various public_html directories of hosting clients. > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Ryan Thompson > Sent: Friday, November 19, 1999 7:23 PM > To: freebsd-questions@FreeBSD.ORG > Subject: public_html admin perms? > > Hi all; > > I'm sure this question may have been posted before in one form or another, > but I was at a loss to find anything like it in the archives. > > Just wondering how others handle public_html administration permissions > for a remote admin. Basically, I have the following situation: > > Some hosting clients publish their own files to their public_html > directories via ftp. > > A www user (in a different group, and not wheel), also needs full access > to public_html directories of users, to handle tech support concerns, or > co-authoring with some clients. > > The www user has login privileges on ftp (chroot'ed). Also has some > basic shell access; though my www helper isn't that comfortable with a > unix prompt :-) The www user needs to log in from another (remote) > network, as well. > > The emphasis here is on not giving more access to anyone than is needed. > Clients are chroot'ed into their respective home directories, with write > access ONLY to their public_html directories (and ftp/pub, in some cases). > > www is chroot'ed to /home on our webserver, which houses all web clients, > as well as our company site pages. > > su is not an option. Remote root logins also not an option :-) Blanket > umask creation settings also not applicable, here. :-) > > /home is its own filesystem, if that helps. (Though, mount options don't > look very promising :-) > > Any suggestions would be great. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message