On Monday 01 May 2006 12:22, Ognjen Bezanov wrote: > I have spent most of the day getting per user web serving to work > (/home/$user/public_html => http://server/~$user) but was constantly > getting "401 Forbidden" errors with apache2. > > After lots of hunting I found that you have to set the permissions for the > user directories to 755 (a+rx). So now it works, but all the users can see > each others home directories, which is unacceptable for this server. > > So I am here to ask if anyone cen recommend a more secure way of doing > this. I want each users home directory readable only by that user (no other > users) but that apache can still serve without a "Forbidden" error.
Make all users part of the same group. Allow users (u) rwX, group (g) nothing, and others (o) rX, or u+rwX,g-rwx,o+rX. This allows everyone to read files and enter directories, except those in the same group. -- Mike Williams -- [email protected] mailing list
