[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] suggestion: chmod the files
- Subject: Re: [cobalt-security] suggestion: chmod the files
- From: "Kevin D" <kdlists@xxxxxxxxxxxxxxx>
- Date: Fri, 15 Sep 2000 14:55:03 -0400
This is an age old question. The short answer is no, you can't.
The long answer is that you probably can, but you would probably have to
forsake the cobalt GUI and restructure the entire permissions structure that
cobalt built.
The reasoning behind this is that a single user cannot belong to more than
32 groups (a linux limitation). The user httpd, which is the user that
Apache uses to access the file system, must have access to each and every
site directory in order to serve the files. This is accomplished by making
all of these files readable by everyone. The alternative, making user httpd
a member of all web site groups, would quickly cause httpd to exceed the 32
group limit.
Kevin
----- Original Message -----
From: "Florian Effenberger" <florian.effenberger@xxxxxxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>; <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Friday, September 15, 2000 1:14 PM
Subject: [cobalt-security] suggestion: chmod the files
> Hello,
>
> and another one :)
>
> I only give one very trusted customer Telnet access, but this user can
> see too much in my opinion. He can lis /home/sites and therefore see
> the URLs of our clients.
>
> Is it possible that you release a patch so /home/sites (and other
> directories!) can be listed only as root?
>
> Thanks a lot,
> Florian
>
>
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>