1 |
On Monday 01 May 2006 12:22, Ognjen Bezanov wrote: |
2 |
> I have spent most of the day getting per user web serving to work |
3 |
> (/home/$user/public_html => http://server/~$user) but was constantly |
4 |
> getting "401 Forbidden" errors with apache2. |
5 |
> |
6 |
> After lots of hunting I found that you have to set the permissions for the |
7 |
> user directories to 755 (a+rx). So now it works, but all the users can see |
8 |
> each others home directories, which is unacceptable for this server. |
9 |
> |
10 |
> So I am here to ask if anyone cen recommend a more secure way of doing |
11 |
> this. I want each users home directory readable only by that user (no other |
12 |
> users) but that apache can still serve without a "Forbidden" error. |
13 |
|
14 |
Make all users part of the same group. |
15 |
Allow users (u) rwX, group (g) nothing, and others (o) rX, or |
16 |
u+rwX,g-rwx,o+rX. |
17 |
This allows everyone to read files and enter directories, except those in the |
18 |
same group. |
19 |
|
20 |
-- |
21 |
Mike Williams |
22 |
-- |
23 |
gentoo-user@g.o mailing list |