Date: Fri, 19 Nov 1999 19:42:16 -0600 From: "Ryan Thompson [FreeBSD]" <freebsd@sasknow.com> To: Aaron Sonntag <aaron@sonntag.org> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: public_html admin perms? Message-ID: <3835FC78.EE4DA9CA@sasknow.com> References: <NDBBIMDNELEBLKLCAJPKCEDICEAA.aaron@sonntag.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Aaron Sonntag wrote: > > I created user accounts for each virtual domain > So a username would be > virtualdomain_com > the home directory would be > /home/virtualdomain_com > the pointer in the httpd.conf would be > /home/virtualdomain_com/public_html > > this way only the specific user and root have write permission to the > webpage directory > the user can have telnet and ftp access or however you want to do it... Perhaps I wasn't quite clear when I described the 'www' user in some detail. The www user is a single 'admin' account (non-superuser) designed to administer (and only administer) the various public_html directories of hosting clients. > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Ryan Thompson > Sent: Friday, November 19, 1999 7:23 PM > To: freebsd-questions@FreeBSD.ORG > Subject: public_html admin perms? > > Hi all; > > I'm sure this question may have been posted before in one form or another, > but I was at a loss to find anything like it in the archives. > > Just wondering how others handle public_html administration permissions > for a remote admin. Basically, I have the following situation: > > Some hosting clients publish their own files to their public_html > directories via ftp. > > A www user (in a different group, and not wheel), also needs full access > to public_html directories of users, to handle tech support concerns, or > co-authoring with some clients. > > The www user has login privileges on ftp (chroot'ed). Also has some > basic shell access; though my www helper isn't that comfortable with a > unix prompt :-) The www user needs to log in from another (remote) > network, as well. > > The emphasis here is on not giving more access to anyone than is needed. > Clients are chroot'ed into their respective home directories, with write > access ONLY to their public_html directories (and ftp/pub, in some cases). > > www is chroot'ed to /home on our webserver, which houses all web clients, > as well as our company site pages. > > su is not an option. Remote root logins also not an option :-) Blanket > umask creation settings also not applicable, here. :-) > > /home is its own filesystem, if that helps. (Though, mount options don't > look very promising :-) > > Any suggestions would be great. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3835FC78.EE4DA9CA>