Date: Sun, 11 Mar 2001 22:24:39 -0800 From: "Clint Martin" <clintm@cet.com> To: "FreeBSD Questions" <FREEBSD-QUESTIONS@freebsd.org> Subject: Re: Secure user dirs Message-ID: <012801c0aabd$1e05a080$0264000a@helter.org> References: <GGEDLFFENPEFKJCNMFBFGEIMCAAA.toushek@canadiangeneral.com> <012201c0aabc$e352c580$0264000a@helter.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Opps.. the second CHMOD command below should be: chmod 704 /home/<USERDIR>/public_html my apologies Clint ----- Original Message ----- From: "Clint Martin" <clintm@cet.com> To: "Alex Toushek" <toushek@canadiangeneral.com> Cc: "FreeBSD Questions" <FREEBSD-QUESTIONS@FreeBSD.ORG> Sent: Sunday, March 11, 2001 10:23 PM Subject: Re: Secure user dirs > yes, if you have all the users being members of the same user group, e.g: > USERS.. you can do something like this: > > chmod 701 /home/* > chmod 704 /home/<USERDIR>/public_html/* > > > This will give each user's main directory permissions like: RWX-----X > wich will allow them FULL access to everything in thier own directories.. it > will restrict other members of the USERS group (or whatever) from accessing > anything in the directory (they won't even be able to chdir into it..) and > it will allow all other users/people NOT in the USERS group to be able to > CHDIR into, but not read anything.. (they won't even be able to "ls" the > directory..) > the 704 permissions on each individual ./public_html/ directory is so that > APACHE, (or whatever you use as a server) will be able to SCAN the > public_html directory.. it technically doesn't have to be able to, but it > may be nice for it to.. > > > Clint > > ----- Original Message ----- > From: "Alex Toushek" <toushek@canadiangeneral.com> > To: <freebsd-questions@FreeBSD.ORG> > Sent: Sunday, March 11, 2001 9:11 PM > Subject: Secure user dirs > > > > Is there an easy way to lock other users out of dirs? ie. to keep other > > users from looking at the contents or downloading the contents of other > > users apache htdocs files but still give apache access to serve the pages? > > This is on a webserver that multiple people have access to pretty much > > everyone's dirs. Which is very bad I just want to try and lock them into > > their own dir or lock access out of other users dirs. I have played with > > file permissons with no success. > > > > Alex > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?012801c0aabd$1e05a080$0264000a>