From owner-freebsd-questions Sun Mar 11 22:24:16 2001 Delivered-To: freebsd-questions@freebsd.org Received: from cet.cet.com (cet.cet.com [206.96.91.2]) by hub.freebsd.org (Postfix) with ESMTP id 49B7837B718 for ; Sun, 11 Mar 2001 22:24:13 -0800 (PST) (envelope-from clintm@cet.com) Received: from clint (clintm-dsl-1-160-3.cet.com [198.202.29.244]) by cet.cet.com with SMTP id WAA10530 for ; Sun, 11 Mar 2001 22:27:22 -0800 Message-ID: <012801c0aabd$1e05a080$0264000a@helter.org> From: "Clint Martin" To: "FreeBSD Questions" References: <012201c0aabc$e352c580$0264000a@helter.org> Subject: Re: Secure user dirs Date: Sun, 11 Mar 2001 22:24:39 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Opps.. the second CHMOD command below should be: chmod 704 /home//public_html my apologies Clint ----- Original Message ----- From: "Clint Martin" To: "Alex Toushek" Cc: "FreeBSD Questions" Sent: Sunday, March 11, 2001 10:23 PM Subject: Re: Secure user dirs > yes, if you have all the users being members of the same user group, e.g: > USERS.. you can do something like this: > > chmod 701 /home/* > chmod 704 /home//public_html/* > > > This will give each user's main directory permissions like: RWX-----X > wich will allow them FULL access to everything in thier own directories.. it > will restrict other members of the USERS group (or whatever) from accessing > anything in the directory (they won't even be able to chdir into it..) and > it will allow all other users/people NOT in the USERS group to be able to > CHDIR into, but not read anything.. (they won't even be able to "ls" the > directory..) > the 704 permissions on each individual ./public_html/ directory is so that > APACHE, (or whatever you use as a server) will be able to SCAN the > public_html directory.. it technically doesn't have to be able to, but it > may be nice for it to.. > > > Clint > > ----- Original Message ----- > From: "Alex Toushek" > To: > Sent: Sunday, March 11, 2001 9:11 PM > Subject: Secure user dirs > > > > Is there an easy way to lock other users out of dirs? ie. to keep other > > users from looking at the contents or downloading the contents of other > > users apache htdocs files but still give apache access to serve the pages? > > This is on a webserver that multiple people have access to pretty much > > everyone's dirs. Which is very bad I just want to try and lock them into > > their own dir or lock access out of other users dirs. I have played with > > file permissons with no success. > > > > Alex > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message