>>>>> "Kent" == Kent West <westk@acu.edu> writes: Kent> That did it. Kent> But this seems like a fundamental flaw. User's should be Kent> restricted (generally speaking) to writing only to their own home Kent> directories, so it seems this is the place for them to put their Kent> web pages. But opening up their home directories to world execute Kent> seems like a bad idea. Setting the world execute bit doesn't open your directory that much. If the execute bit is set, and the read bit isn't, other users won't be able to list the contents of your directory. The only way they can access a file is if they know the exact file name (and if they have read permissions on that file). If you still don't want to do this, you can look into adding ACL (access control list) support into your kernel (requires a patch), which allows you to just grant the httpd user execute permissions. Or you might be able to convince apache, somehow, to look for user pages in some other location, say /usr/local/web/$(USER), and have a convenience symlink from public_html to that directory. -- Hubert Chan <hubert@uhoreg.ca> - http://www.uhoreg.ca/ PGP/GnuPG key: 1024D/124B61FA Fingerprint: 96C5 012F 5F74 A5F7 1FF7 5291 AF29 C719 124B 61FA Key available at wwwkeys.pgp.net. Encrypted e-mail preferred.
Attachment:
pgpeGAR8ftpCp.pgp
Description: PGP signature