On Wed, 10 Jul 2002, Roger Abrahamsson wrote:
>
>
> But what happens now if you allow every user to run scripts through
> suexec beneath public_html?
> that means they "have" to own their public_html directory and thus
> always can change the access bits
> and delete it, causing the server to
On Wed, 10 Jul 2002, Roger Abrahamsson wrote:
>
>
> But what happens now if you allow every user to run scripts through
> suexec beneath public_html?
> that means they "have" to own their public_html directory and thus
> always can change the access bits
> and delete it, causing the server to
But what happens now if you allow every user to run scripts through
suexec beneath public_html?
that means they "have" to own their public_html directory and thus
always can change the access bits
and delete it, causing the server to refuse restarting?
regards
/Roger
--
Roger Abrahamsson
Sys/Ne
--On Freitag, 5. Juli 2002 11:38 +1000 Jason Lim <[EMAIL PROTECTED]>
wrote:
But won't "rmdir ." succeed if they are in the public_html directory?
rmdirs _below_ client1/site1/cgi-bin/ and client1/site1/htdocs/ would
all work.
rmdirs of client1/site1/htdocs/, or client1/site1/cgi-bin/ themselves
w
But what happens now if you allow every user to run scripts through
suexec beneath public_html?
that means they "have" to own their public_html directory and thus
always can change the access bits
and delete it, causing the server to refuse restarting?
regards
/Roger
--
Roger Abrahamsson
Sy
On Fri, Jul 05, 2002 at 01:42:33PM +1000, Donovan Baarda wrote:
> On Fri, Jul 05, 2002 at 01:33:55PM +1000, Donovan Baarda wrote:
[...]
> This allows root to create other directories in public_html like
> "public_html" that cannot be deleted by abo. The o+t,g+s combo is a nice
^
Ugh, should be
On Fri, Jul 05, 2002 at 09:03:02AM +1000, Jason Lim wrote:
> If the user deletes /home/username/log, or public_html, Apache won't load.
> And it doesn't give a useful error most times unless you start
> investigating. There doesn't seem a way to make Apache handle the
> situation gracefully, by eit
On Fri, Jul 05, 2002 at 01:42:33PM +1000, Donovan Baarda wrote:
> On Fri, Jul 05, 2002 at 01:33:55PM +1000, Donovan Baarda wrote:
[...]
> This allows root to create other directories in public_html like
> "public_html" that cannot be deleted by abo. The o+t,g+s combo is a nice
^
Ugh, should be "
On Fri, Jul 05, 2002 at 01:33:55PM +1000, Donovan Baarda wrote:
> On Fri, Jul 05, 2002 at 11:38:53AM +1000, Jason Lim wrote:
[...]
> Given this, I would suggest something like this for an example user "abo";
>
> minkirri:~$ dl
> total 2
> drwxrws--t4 root abo81 Jul 5 13:13 ./
You can make 3 predefined directories for each customer that they can't
delete. One htdocs, logs, and "stuff" or something, for them to put all the
non web accessible stuff in.
Another thing you can do is create a wrapper script for the Apache startup
that checks for the existence of all the esse
On Fri, Jul 05, 2002 at 11:38:53AM +1000, Jason Lim wrote:
> > But won't "rmdir ." succeed if they are in the public_html directory?
[...]
> I was just thinking about (using your examples) making the htdocs and
> cgi-bin directories immutable (+i). However, I am not very familiar with
> using those
;[EMAIL PROTECTED]>
To: "Chris Wagner" <[EMAIL PROTECTED]>
Cc:
Sent: Friday, July 05, 2002 11:12 AM
Subject: Re: Users deleting public_html and log causing Apache to fail
startup
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
On Thu, 04 Jul 2002, Chris Wagner wrote:
> >On Fri, 05 Jul 2002, Jason Lim wrote:
> >They don't have write access to its parent directory:
> >
> >[EMAIL PROTECTED]:~/test$ mkdir public_html
> >[EMAIL PROTECTED]:~/test$ sudo chown root. .
> >[EMAIL PROTECTED]:~/test$ rmdir public_html
> >rmdir: `p
On Fri, 05 Jul 2002, Jason Lim wrote:
> > log directory read only
>
> Yeap... that can be done easily... chmod a-w log.
>
> > The user may not remove their document root
>
> How do you do that, while allowing them full access to that directory?
They don't have write access to its parent direct
Sent: Friday, July 05, 2002 9:20 AM
Subject: Re: Users deleting public_html and log causing Apache to fail
startup
On Fri, 05 Jul 2002, Jason Lim wrote:
> The "users that know too much" keep on deleting their directories that
> Apache uses to load up files from.
>
> For
On Fri, 05 Jul 2002, Jason Lim wrote:
> The "users that know too much" keep on deleting their directories that
> Apache uses to load up files from.
>
> For example, assume the user directory is /home/username/public_html (for
> the HTML docs), and /home/username/log (for the LOG files).
> So, ho
16 matches
Mail list logo
