Re: Apache suEXEC Question

To: debian-isp@lists.debian.org
Subject: Re: Apache suEXEC Question
From: "A.Sleep" <a.sleep@asleep.net>
Date: Sat, 13 Oct 2001 17:22:30 -0400
Message-id: <[🔎] 20011013172230.A10059@asleep.net>
Mail-followup-to: "A.Sleep" <a.sleep@asleep.net>, debian-isp@lists.debian.org
In-reply-to: <[🔎] 20011013140903.L24500@taz.net.au>
References: <[🔎] 20011012095531.A7867@asleep.net> <[🔎] 20011012091757.3f9d1968.debian@to11.net> <[🔎] 20011012134500.A8399@asleep.net> <[🔎] 20011013140903.L24500@taz.net.au>

On Sat, Oct 13, 2001 at 02:09:03PM +1000, Craig Sanders wrote:
> dunno if this is already what you were doing, but why not use proftpd
> which can restrict users to their own home directory? it's not quite the
> same as chroot (because you don't need to copy /etc, /usr/bin, /lib, and
> so on into each home dir) but it gives a similar affect.

For ftp I already do that. This box does provide shell access though. That's
the reason I was looking at things like FreeVSD (looks good and they 'say'
they are working on a Debian port but no developer has ever answered my
questions about it).

The apache problem has been solved so the home dir's can be 700'ed the users
and I don't want to make them use rbash (since many of the users are
programmers this would be silly) so I'll have to devise some other means of
securing the box a bit more.

I know for one I'll be changing php to run in SAFE_MODE :)

Thanks for all the help.

A.Sleep

Reply to:

References:
- Apache suEXEC Question
  - From: "A.Sleep" <a.sleep@asleep.net>
- Re: Apache suEXEC Question
  - From: Tim Moss <debian@to11.net>
- Re: Apache suEXEC Question
  - From: "A.Sleep" <a.sleep@asleep.net>
- Re: Apache suEXEC Question
  - From: Craig Sanders <cas@taz.net.au>

Prev by Date: Re: Mail Server Virus Protection
Next by Date: stable+inn2 from unstable?
Previous by thread: Re: Apache suEXEC Question
Next by thread: Re: Apache suEXEC Question
Index(es):
- Date
- Thread