On 10-10-31 04:29 AM, Roland Tapken wrote:
Hello Kurt,
simply let your "www-data"-user be a member of all user's group. This way
Apache can read the files of every user and suPHP can be used with different
groups.
That only works for a small number of users. Most systems have a limit
to the number of effective groups at any given time. In most shared
environments, that would mean that the www-data user would have to be a
member of, say, 500 groups. Not feasible.
Instead, a better solution would be to use POSIX ACLs to give the
www-data user read access to all the user folders. Then you can tighten
the permissions substantially while still keeping the user and group of
the files to that of the site user. (Make certain you have group read
and execute as the group permissions or the ACLs will be ignored.) And
you can set a default ACL on each user's folder so that new files and
folders have the same permissions attached.
--
William Astle
[email protected]
_______________________________________________
suPHP mailing list
[email protected]
https://lists.marsching.com/mailman/listinfo/suphp
