thanks Mathieu,
To how many groups can "nobody" be associated to ?
Have any idea if ACL will be build in some kernel distribution ?
It seem to look like the project got finish recently.
On another subject, there is more than one hour delay between the moment
I send my email and the moment it gets post .. am I the only one ?
cheers,
alain
"Bois, Mathieu" wrote:
>
> You've got to rely on the OS do to that.
>
> You've got to have the access to these files (in order to modify them for
> instance !) AND the user nobody needs to (if your Apache server runs under
> the user nobody), but only in ReadOnly (to be completely secure).
>
> So, I can see two solutions :
> - you can use the groups
> - you can use the ACL (but they're not part of Linux : you've got to find a
> solution from somewhere on the web, go to freshmeat.net)
>
> With ACL, you can say that ONLY you and nobody can access these files.
>
> With group, ask your sysadm to create a group 'alain', then make your very
> user and the user nobody belong to this group and do a 'chgrp alain' on your
> files. *But* a user can only belong to a limited number of groups, so if in
> your site you're a lot of people to need this, then the user nobody won't be
> able to belong to so much groups...
>
> Regards
>
> Mathieu
>
