[X-Unix] Shared hosting with apache and php, security concerns
Alexandre Gauthier
supernaut at raptorized.com
Sun Mar 21 02:30:25 PST 2004
On 18/03/04 04:33, "Eugene Lee" <list-themacintoshguy at fsck.net> wrote:
>
> Incorrect. Files (and directories) to be served by Apache need to be
> readable by the Apache process. For example, if you configure Apache to
> run as user "www" and group "www", then served content must be readable
> by either the user "www" or anyone within the group "www".
>
> In a shared web server, a typical method is to make all users' web
> directories group-readable by Apache, but also disallow all world privs.
> Doing this keeps users from accessing each other's web content.
>
Would you mind describing how to do this more in details? I am interested in
finding out.
Thank you in advance.
--
Alexandre Gauthier
Network Architect
Divide By Zero Linux Solutions
More information about the X-Unix
mailing list