From owner-freebsd-questions@FreeBSD.ORG  Sat Aug 13 11:43:01 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EA3C216A41F
	for <freebsd-questions@freebsd.org>;
	Sat, 13 Aug 2005 11:43:01 +0000 (GMT)
	(envelope-from freebsd@meijome.net)
Received: from sigma.octantis.com.au (sigma.octantis.com.au [207.44.188.23])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 2563343D53
	for <freebsd-questions@freebsd.org>;
	Sat, 13 Aug 2005 11:43:00 +0000 (GMT)
	(envelope-from freebsd@meijome.net)
Received: (qmail 21824 invoked from network); 13 Aug 2005 21:42:59 +1000
Received: from 203-173-32-215.dyn.iinet.net.au (HELO ?192.168.13.3?)
	(203.173.32.215)
	by sigma.octantis.com.au with (DHE-RSA-AES256-SHA encrypted) SMTP;
	13 Aug 2005 21:42:59 +1000
Message-ID: <42FDDCBF.4070808@meijome.net>
Date: Sat, 13 Aug 2005 21:42:55 +1000
From: Norberto Meijome <freebsd@meijome.net>
User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Carstea Catalin <carstea.catalin@gmail.com>
References: <dc6701ba050813013367e3cf32@mail.gmail.com>
In-Reply-To: <dc6701ba050813013367e3cf32@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-questions@freebsd.org
Subject: Re: Connect from distance!
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Aug 2005 11:43:02 -0000

Carstea Catalin wrote:
> How can i "share" ( with chmod for example ) for only some users ( web 
> programmers ) only one directory where they can put his web pages.
>  Ex : "share" : /var/www/html/dir1
> for user1,user2,user3 
> If user1 make ssh on my server he can view,read,modify,remove only files 
> from /var/www/html/dir1
Hi there,

easiest, make the programmers members of the user's groups. make sure 
the /var/www/html/dir[1|2|3] directories are g+rw , and u-rwx

You'll have to add the user/group the webserver is running as to those 
user's groups too.

> Tks!
>  If exist another solution for my web programers ( secure solution ) to work 
> from distance on my web server please tell me. 
>  
> 

I suggest you don't give full ssh access, but rather access via SFTP, 
setting the user's shell to scponly (ports tree,  shells/scponly , IIRC) 
, or even better, scponlyc (chrooted version of scponly), which is part 
of the scponly port and can be built with a special flag. The users will 
  be able to upload/download files securely, edit them in their remote 
computers and upload them again. Most good quality web editing software 
understands SFTP nowadays.

Beto