On Mon, Aug 13, 2001 at 02:25:22PM +0200, Marc Haber wrote: > > Neither am I talking about anonymous ftp, nor of shell users logging > in. What I am talking about is a web hosting environment, where - > unfortunately - ftp is still the preferred method of accessing the web > data for the customers. scp or other means are not an option since > neither Frontpage nor Dreamweaver can do anything but ftp and the > users don't have shell accounts on the web server. Access control is > managed via ftpd configuration, so the ftp daemon needs a user that > can write the www data files. If apache runs as www-daemon, and the > www data files are owned by www-data, the ftp daemon needs to run as > root or as www-data, otherwise uploads of new web content are not > possible. the ftp daemon should not run as the same user as the http daemon then. web content should NOT be owned by the account which httpd runs as. period. -- Ethan Benson http://www.alaska.net/~erbenson/
Attachment:
pgpdDGPp2cMc7.pgp
Description: PGP signature