Jani Ollikainen wrote: > On 06/03/10 20:08, Conor Clafferty wrote: > >> e.g. /usr/share/mysharedfolder should be allowed to be executed by any >> of my users but not writeable. >> > > That sounds a feature that I would also appreciate. Now as I cannot even > use symlinks to do that my only option has been to copy the files to > everyone. > > But how that would be easiest to implement? One thing comes to my mind > that is having a configuration setting of the owner whose files everyone > can run. Like: > > shared_user=username > > Then every file that is owner by username would be allowed to run by > the users. Then in my configuration I could use symlinks to > /usr/share/mysharedfolder. > > This would add some checks to permissions checks but shouldn't slow > it down much. > > So who wants to implement that? (Or some better way of doing it:) >
I've implemented something similar -- the patch is at https://lists.marsching.com/pipermail/suphp/2009-September/002209.html The basics are that it allows you to turn off user checks and rely on group checks instead. It should also be possible to modify it to handle a "trusted" set of users/groups. If you want, I can probably knock that together tonight. Dave
_______________________________________________ suPHP mailing list [email protected] https://lists.marsching.com/mailman/listinfo/suphp
