hey.
i'm trying to password protect a wiki site, or rather i don't want to
password protect it yet, but i want to make sure that i know how to if i
ever need to resist an attack on the site.
i only want to password protect the normally open "edit" ability, i still
want people to be able to view
On Sat, May 27, 2000 at 06:51:58PM -0500, Nathan E Norman wrote:
> On Thu, May 25, 2000 at 08:07:10PM -0800, Ethan Benson wrote:
> [ snip ]
> > all keeping the logs owned by the unpriviledged user seems to buy you
> > is a security hole.
>
> That's why on new debian installations the log are owned
On Thu, May 25, 2000 at 08:07:10PM -0800, Ethan Benson wrote:
[ snip ]
> all keeping the logs owned by the unpriviledged user seems to buy you
> is a security hole.
That's why on new debian installations the log are owned by root.root.
However, if the logs were already owned by www-data.www-data t
Seminary
On Thu, 25 May 2000, Ethan Benson wrote:
> Date: Thu, 25 May 2000 20:07:10 -0800
> From: Ethan Benson <[EMAIL PROTECTED]>
> To: Ian Zimmerman <[EMAIL PROTECTED]>
> Cc: debian-user@lists.debian.org
> Subject: Re: apache question
>
> --sGwo475CiIwWEjLI
>
On Thu, May 25, 2000 at 08:25:08PM -0700, Ian Zimmerman wrote:
>
> Ethan> however one thing you should do on a debian system is chown
> Ethan> /var/www to root and make sure its not group writable. also
> Ethan> chown /var/log/apache/* to root.adm and make sure the
> Ethan> permissions are 640 or
Ethan> however one thing you should do on a debian system is chown
Ethan> /var/www to root and make sure its not group writable. also
Ethan> chown /var/log/apache/* to root.adm and make sure the
Ethan> permissions are 640 or 644. (you have to fix the apache cron
Ethan> jobs to not undo this chan
On Mon, May 22, 2000 at 09:54:29AM +0100, Dominic Blythe wrote:
> i don't use inetd to start apache, i start it from a script
> which i can only run as root. if i chmod the script and try
> being any other user, it won't start.
it needs root privileges (or more presisly a capability to bind to
pri
i don't use inetd to start apache, i start it from a script
which i can only run as root. if i chmod the script and try
being any other user, it won't start.
the documentation says "you will have to start apache as root
and then it will switch to Nobody", it kind of does, I get
one process runnin
> Why are you trying to set this via apache confs??
Isn't all cgi info set in config files in one way or another (i.e.
ScriptAlias, AddHandler, or mod_rewrite) ?
> Just make the directory in the users home directory. Take away read access
> so no one can go in. Give everyone rights to execu
Why are you trying to set this via apache confs?? Just make the
directory in the users home directory. Take away read access so no one
can go in. Give everyone rights to execute cgi's and off you go.
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contac
Using Apache/1.1.3 Debian/GNU, I am trying to ScriptAlias a directory under a
users home directory so that it can execute cgi programs. The tilde in the
ScriptAlias directive from the srm.conf file seems to be causing problems in
the line below (cgi programs are not being executed, but instead
Ian Keith Setford wrote:
>
> I have Apache running but I am missing an important piece of information.
> I *think* I have read all the documentation but I do not know where to
> locate the "home" page for my server.
> Thanks in advance!
>
look in your /etc/apache/httpd.conf file for the SeverRo
Hi-
I have Apache running but I am missing an important piece of information.
I *think* I have read all the documentation but I do not know where to
locate the "home" page for my server. The individual users' space is
working fine but I would like to have a welcome page and/or a default page
in
Hi,
I have just removed my httpd and installed apache but I'm
having some troubles in using it (actually in loading it). It gives me a
couple of messages:
getpeername : socket operation on non-socket
getsocketname: socket operation on non-socket
14 matches
Mail list logo
