Date: Mon, 16 Feb 2004 17:31:13 -0500 (EST) From: Andy Dills <andy@xecu.net> To: Lewis Thompson <purple@lewiz.net> Cc: isp@freebsd.org Subject: Re: Apache and home directories (file browser). Message-ID: <Pine.BSF.4.44.0402161724510.53106-100000@thunder.xecu.net> In-Reply-To: <20040216214437.GC65551@lewiz.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 16 Feb 2004, Lewis Thompson wrote: > I think this is what I'm looking for, yes. Since I posted this I asked > some questions on IRC and somebody mentioned that Apache can be chrooted > to the uid of a script's owner (similar in a way to safe_mode in PHP). > This would surely then allow files to be read/written by Apache in a > secure fashion. > > My worry here is that Apache would have to be running as root to > chroot -- can anybody confirm this for me? (Indeed, can anybody confirm > that it is even possible to do this?) While you can chroot apache, that's serverwide, not per-virtualhost. If I were you and I wanted to do what you're talking about, I'd use suexec with perl scripts. AFAIK, that's the only way to do it correctly. Andy --- Andy Dills Xecunet, Inc. www.xecu.net 301-682-9972 ---
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.44.0402161724510.53106-100000>