Find the answer to your Linux question:
Results 1 to 3 of 3
Obviously websites need to be readable by the Apache process in order to get served to web visitors. Is there a best practices for securing the website directories so that ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Banned
    Join Date
    Dec 2002
    Location
    Texas
    Posts
    242

    Hiding user websites from each other


    Obviously websites need to be readable by the Apache process
    in order to get served to web visitors. Is there a best practices
    for securing the website directories so that users can't find each
    others websites through the file system? Perhaps ownership by
    the user with group ownership by apache and no "other" perms?
    Or is there a more common approach that's better to be used?

  2. #2
    Just Joined!
    Join Date
    Mar 2008
    Posts
    69
    Quote Originally Posted by thehemi View Post
    Obviously websites need to be readable by the Apache process
    in order to get served to web visitors. Is there a best practices
    for securing the website directories so that users can't find each
    others websites through the file system? Perhaps ownership by
    the user with group ownership by apache and no "other" perms?
    Or is there a more common approach that's better to be used?
    not sure i got the name right...bt

    for ftp change this is your confi file
    chroot_local_user=YES

    for shell get jailkit rpm

    this asssumes your user websites are in their directs under home direct.

    I am sure if the user websites are somewhere else you will be able to find a solution for both shell and ftp by the above methods

  3. #3
    Banned
    Join Date
    Dec 2002
    Location
    Texas
    Posts
    242
    Quote Originally Posted by centuser1 View Post
    not sure i got the name right...bt

    for ftp change this is your confi file
    chroot_local_user=YES
    It appears that these are the options in question:

    #chroot_list_enable=YES
    #chroot_list_file=/etc/vsftpd.chroot_list

    My user websites are NOT directly under their home, but they
    do have symbolic links to the sites under the home. Maybe it
    will still work that way, I will play around with this. Thanks.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •