Date: Mon, 31 Jul 2000 14:33:42 -0500 (CDT) From: James Wyatt <jwyatt@rwsystems.net> To: Veaceslav Revutchi <vr@dnt.md> Cc: freebsd-isp@freebsd.org Subject: Re: web hosting, what ftp to use? Message-ID: <Pine.BSF.4.10.10007311430400.21342-100000@bsdie.rwsystems.net> In-Reply-To: <Pine.BSF.4.10.10007311431001.3248-100000@zeus.dnt.md>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 31 Jul 2000, Veaceslav Revutchi wrote: > Thanks everyone for sharing your experience with me! > > I have one more question about cgi. I was thinking about giving > ftp access for each user to its own cgi directory but then > I won't be able to control the contents of their scripts. > What would be a wise procedure to allow users to update their > cgi stuff? > > thanks again very much, > slava revutchi You might *seriously* look at a jail or chroot approach. There have been several web servers hacked when folks uploaded scripts that allowed them to do things like search for broken suid programs, read world-readable files with config info, etc... You should also provide some simple scripts users can clone/modify to cut down on support calls and provide hints to approach forms, etc... You should also look into using FreeBSD's login limitations on your server account - but there are *much* better experts around here than I on doing so. - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.10007311430400.21342-100000>