On Fri, May 19, 2006 at 08:37:13PM +0100, Gaby vanhegan wrote: > > I don't want to put the entire /home partition into the chroot, that > leaves everybody's files vulnerable if apache/php gets haxored. I > could just keep each users websites folder in the chroot, but then > sftpd or ftpd (both chrooted) won't be able to see them either.
i made myself a seperate /var/www/htdocs/<sitename> partition and then make individual symlinks from ~<someuser>/public_html -> thatpartition/<someuser> not extremely elegant, but depending on how many users you have or how much dynamism there is in the userbase, might be simple and good enough jared
