Running specific commands is simple enough, however my big stumbling block is that the script have to be able to handle out of band configuration changes, and they don't want to have to bother with chown if they do something on a different username.At least I can run a specific apache on a different port, connectable only though a VPN. I am aware that if a local account gets compromised it would be a problem, however they don't care about that.
What kind of configuration?Sounds like something Webmin / Usermin ( http://webmin.com/ ) were designed to handle. Can also write custom modules for those if it really is unique enough that an existing module doesn't exist.
Should in any cases be much safer than Apache as root... -- Tino Didriksen
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Peruser mailing list [email protected] http://www.telana.com/mailman/listinfo/peruser
