I'm getting confused then.
in httpd.conf it says don't use the user and group nobody, it suggests
creating a user and group called www.
My main question was how do I set that up properly.
As for my permissions on my public_html directory, here it is let me
know if it's fine.
[root@gibor /etc]# ls -la /home/dysan/public_html
total 4
drwxr-xr-x 3 dysan www 1024 Mar 24 10:21 .
drwx------ 14 dysan dysan 1024 Mar 24 23:39 ..
drwx------ 2 dysan www 1024 Mar 23 19:44 cgi-bin
-rwxr-xr-x 1 dysan www 202 Mar 23 19:44 index.html
[root@gibor /etc]#
This is assuming that www is the group it should be in ( thats how we
have our BSDi 4.0 servers set up at work ... )
thanks,
pj
Aaron Lynch wrote:
>
> you shouldn't change the group of the server. it's better to explicitly
> change the permissions on the user, public_html directory and all the
> files in it. You sure you've done this? I use a shell script to
> automate it.
>
> #aarons shell script to add users and change permissions on their
> #local directories to allow http access to public_html
> /usr/sbin/useradd $1
> chown $1 /home/$1
> chgrp users /home/$1
> chmod 755 /home/$1
> chmod 755 /home/$1/public_html
> cd /home/$1/public_html/
> chmod 644 *
> /usr/sbin/sendmail $1 </root/welcome.mai
>
> to add a new user my billing software telnets in and says simply
> /newuser newusername
> badda-boom badda bing. seems to me changing the server defaults around
> is risky at best
>
> > -----Original Message-----
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED]]On Behalf Of PJ : Biztech
> > Sent: Thursday, March 25, 1999 9:24 AM
> > To: [EMAIL PROTECTED]
> > Subject: Re: [newbie] httpd user
> >
> >
> > I guess my reply got lost, so here we go again....
> >
> > the problem, for my server, isn't the page or folder
> > permissions, I do
> > have those set right.
> >
> > It's the group user found in httpd.conf
> >
> > # User/Group: The name (or #number) of the user/group to run httpd as.
> > # On SCO (ODT 3) use User nouser and Group nogroup
> > # On HPUX you may not be able to use shared memory as nobody, and the
> > # suggested workaround is to create a user www and use that user.
> > # NOTE that some kernels refuse to setgid(Group) or semctl(IPC_SET)
> > # when the value of (unsigned)Group is above 60000;
> > # don't use Group nobody on these systems!
> >
> > User ???
> > Group ???
> >
> > I've put in about every combo, "root", "wheel", "nobody" with any of
> > these choices the main webpage, host.com will come up, but any sub
> > user. host.com/~user will not. I did use one of my users as the
> > Group in the httpd.conf and his page would come up, but not
> > the others.
> >
> > grrrr, BSD I've gotten to work, but this is killing me...
> >
> > thanks,
> > pj
> >
> > Steve Philp wrote:
> > >
> > > Aaron Lynch wrote:
> > > >
> > > > can you please explain what the settings mean? I sorta
> > have a grasp on
> > > > the chmod 644 style (sorta), so are you?
> > >
> > > The settings "go+rx" mean to add read and execute
> > permissions for the
> > > group and others. Since the httpd daemon runs as 'nobody',
> > you need to
> > > allow others permission to your directories so they can
> > read the files.
> > >
> > > In the numeric style you're used to, it would be 'chmod 755
> > > <directory>'.
> > >
> > > > chmod Group Owner adding Read & eXicute? So what happens
> > if for example
> > > > the file alread had global exicute, no change?
> > >
> > > They still need read privileges...
> > >
> > > > tryin to learn :)
> > >
> > > You're doing well.
> > >
> > > > -Aaron
> > > >
> > > > > Check the permissions on your home directory. They're probably
> > > > > something like:
> > > > >
> > > > > drwx------ 12 lschultz lschultz 1024 Mar 24
> > 21:56 lschultz
> > > > >
> > > > > Use the command:
> > > > >
> > > > > chmod go+rx <directory name>
> > > > >
> > > > > Retry loading the webpage. Should work now...
> > >
> > > --
> > > Steve Philp
> > > [EMAIL PROTECTED]
> >
