Re: bindfs for web docroot - is this sane?

To: debian-user@lists.debian.org
Subject: Re: bindfs for web docroot - is this sane?
From: <tomas@tuxteam.de>
Date: Wed, 12 Oct 2022 07:08:42 +0200
Message-id: <[🔎] Y0ZL2qcVX5ddYBYZ@tuxteam.de>
In-reply-to: <[🔎] a5476eac-46e8-6236-4201-714a03e545be@walnut.gen.nz>
References: <[🔎] 67f2628c-a092-a03b-6912-77ef21dc78a9@walnut.gen.nz> <[🔎] efd474e26a7b514053417230c88a196a@der-he.de> <[🔎] a5476eac-46e8-6236-4201-714a03e545be@walnut.gen.nz>

On Wed, Oct 12, 2022 at 03:55:03PM +1300, Richard Hector wrote:
> On 11/10/22 22:40, hede wrote:
> > On 11.10.2022 10:03 Richard Hector wrote:
> > > [...]
> > > Then for site developers (who might be contractors to my client) to be
> > > able to update teh site, they need read/write access to the docroot,
> > > but I don't want them all logging in using the same
> > > account/credentials.
> > > [...]
> > > Does that sound like a sane plan? Are there gotchas I haven't spotted?
> > 
> > I think I'm not able to assess the bind-mount question, but...
> > Isn't that a use case for ACLs? (incl. default ACLs for the webservers
> > user here?)
> 
> Yes, probably. However, I looked at ACLs earlier (months ago at least), and
> they did my head in ...

I haven't thought that through, but I think ACLs solve a slightly different
problem.

Cheers
-- 
t

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- bindfs for web docroot - is this sane?
  - From: Richard Hector <richard@walnut.gen.nz>
- Re: bindfs for web docroot - is this sane?
  - From: hede <debian452@der-he.de>
- Re: bindfs for web docroot - is this sane?
  - From: Richard Hector <richard@walnut.gen.nz>

Prev by Date: Re: debugging apt-get
Next by Date: Re: bindfs for web docroot - is this sane?
Previous by thread: Re: bindfs for web docroot - is this sane?
Next by thread: Re: bindfs for web docroot - is this sane?
Index(es):
- Date
- Thread