People,
We have a problem with access to /home/httpd/html.
Since apache runs as user nobody, I thought adding the group
nobody to user "joeuser" would work. Surprise!
All of the directories under /home/httpd are owned by
user root, group root. Changing /home/httpd/html to be
owned by group nobody, didn't seem to help. We still get
'permission denied", when trying to drop a file into html
as "joeuser".
OK, (as root): cd /home/httpd;chmod g+w html;ls -l
Looks good,; we can drop files into the directory as joeuser.
Question: Are we opening any security holes by doing this,
or closing them?
Why (RH 6.x, apache, BTW) are the directories owned by root?
Is it because I started putting things in as root?
Is this the default installation?
Wouldn't it be safer not to require anybody to be root, in order
to put things in /home/httpd directories?
Does making a directory owned by a specific group, work
somewhat like an ACL (access Control List)? That is,
only those users who are members of that group, can access the
file/directory, if permissions are not given in "others".
TIA,
Bob Sparks
Linux guru wannabe
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
