Roland Tapken wrote: > Hi, > > >> This will allow "root" ans "others" (e.g. all daemons) to read /etc/passwd >> but disallow it for users of the webusers group. Much easier than setting >> up a vhost environment for each user :-) >> > > I meant "chroot environment", of course. > > Viele Grüße, > Roland Tapken > Sometimes I feel stupid. (at least in debian) /etc/passwd DOESN'T contain password. they are stored in /etc/shadow, which is NOT readable by users. so there is no need to protect /etc/passwd from reading, except if you don't want to disclose the list of local users. In that case, you must go with the chroot stuff, otherwise it would be (at least) possible to list directories in /home
_______________________________________________ suPHP mailing list [email protected] https://lists.marsching.com/mailman/listinfo/suphp
