On Thu, Aug 17, 2006 at 03:10:05PM +0100, Jon Dowland wrote: > At 1155837967 past the epoch, Anthony Hawkes wrote: > > I am not sure which users to add to group folder and what > > to modify to fix this problem up, I have googled my heart > > out and cannot figure this out can anyone give me some > > ideas > > Apache2 runs as "www-data"; you would have to add www-data > to the group which has access to this folder and restart > apache. Note however that this means any script on the > server that has a flaw in it might be exploited to read or > write to this directory. > > If you need more fine-grained access control for web > applications, take a look at the SELinux ACLs. > SELinux ACLs might be overkill for this. Standard ext2/ext3 or xfs ACLs would probably do the trick. He could even set something up to monitor the directory tree for new files or directories and then have it update the ACLs. Regards, -Roberto -- Roberto C. Sanchez http://familiasanchez.net/~roberto
Attachment:
signature.asc
Description: Digital signature