Results 1 to 2 of 2
Thread: n00b needs a little guidance
Enjoy an ad free experience by logging in. Not a member yet? Register.
- Join Date
- Jun 2012
n00b needs a little guidance
Last edited by tylerknowsthis; 06-06-2012 at 11:51 PM. Reason: uhhh....i dunno
- Join Date
- May 2011
it seems that you have the mod_userdir Apache module enabled.
mod_userdir - Apache HTTP Server
yes, you are right in thinking that - for it to work properly, your home directory needs to be world readable. per the apache config file:
# # UserDir: The name of the directory that is appended onto a user's home # directory if a ~user request is received. # # The path to the end user account 'public_html' directory must be # accessible to the webserver userid. This usually means that ~userid # must have permissions of 711, ~userid/public_html must have permissions # of 755, and documents contained therein must be world-readable. # Otherwise, the client will only receive a "403 Forbidden" message. # # See also: http://httpd.apache.org/docs/misc/FAQ.html#forbidden #
what i would probably do to protect the pages via a browser is to create Apache users and groups files (using the htpasswd utility), then protect the Virtual Host directories using them by specifying the authorized users/groups in .htaccess files.
also, from a filesystem perspective, you can control read/write access to the files using ACLs (setfacl/getfacl). Or you could even get away with it using standard Unix permissions on the filesystems.