Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 12 Feb 2009 14:43:36 +0100
From:      Uwe Laverenz <uwe@laverenz.de>
To:        Keith Palmer <keith@academickeys.com>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: Restricting users to their own home directories / not letting users view other users files...?
Message-ID:  <20090212134336.GA3324@laverenz.de>
In-Reply-To: <53134.12.68.55.226.1234369337.squirrel@www.academickeys.com>
References:  <53134.12.68.55.226.1234369337.squirrel@www.academickeys.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Feb 11, 2009 at 11:22:17AM -0500, Keith Palmer wrote:

> I realize I can fix this by setting the permissions on the "/home/shannon"
> directory to 700. *However* then Apache (running as user "www") won't
> display the documents in "/home/shannon/public_html" from
> "http://ip-address/~shannon/", instead returning a "403 Forbidden" error.

I did not see a correct answer to your question so far, so here you are:

- set the permissions to the users homedir to 0700

- run "chmod o+x" on the homedir
  this sets the permissions to "drwx-----x" which is exactly what you
  want: others can switch to this directory but _not_ read its contents

- change the permissions to "public_html" to whatever you need for
  apache (0755 probably)

done.

cu,
Uwe




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090212134336.GA3324>