Date: Mon, 31 Jul 2000 14:55:25 -0500 From: "John Brooks" <john@day-light.com> To: <freebsd-isp@freebsd.org> Subject: RE: web hosting, what ftp to use? Message-ID: <000f01bffb29$48b64940$0b00a8c0@dle> In-Reply-To: <Pine.BSF.4.10.10007311430400.21342-100000@bsdie.rwsystems.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Instead of allowing cgi-bin access to the customer, what about supplying PHP and chroot the FTP access to just apache's document root for the virtual domain of that particular customer? Is that a workable option? jb -----Original Message----- From: owner-freebsd-isp@FreeBSD.ORG [mailto:owner-freebsd-isp@FreeBSD.ORG]On Behalf Of James Wyatt Sent: Monday, July 31, 2000 2:34 PM To: Veaceslav Revutchi Cc: freebsd-isp@freebsd.org Subject: Re: web hosting, what ftp to use? On Mon, 31 Jul 2000, Veaceslav Revutchi wrote: > Thanks everyone for sharing your experience with me! > > I have one more question about cgi. I was thinking about giving > ftp access for each user to its own cgi directory but then > I won't be able to control the contents of their scripts. > What would be a wise procedure to allow users to update their > cgi stuff? > > thanks again very much, > slava revutchi You might *seriously* look at a jail or chroot approach. There have been several web servers hacked when folks uploaded scripts that allowed them to do things like search for broken suid programs, read world-readable files with config info, etc... You should also provide some simple scripts users can clone/modify to cut down on support calls and provide hints to approach forms, etc... You should also look into using FreeBSD's login limitations on your server account - but there are *much* better experts around here than I on doing so. - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000f01bffb29$48b64940$0b00a8c0>