LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 11-12-2009, 06:02 AM   #1
fillman
LQ Newbie
 
Registered: Nov 2009
Location: Ukraine
Distribution: Debian Lenny
Posts: 1

Rep: Reputation: 0
Question users & groups in server configuration


Straight to the problem, I have configured nginx server on my VPS. And I have a lot of users added to my VPS. Nginx runs with group that I created "webmasters" and a user "some_user", also each user belongs to that group "webmasters", that is needed for server (nginx) to access some files in user web-folders. But the problem is that any user can access and read data from other users in "webmasters" group. I just can't figure it out, what is the best strategy for disallowing users to view their folders to others but nginx could access them.

First what I've done I set permissions of users web-folders so only owners (users them selves) can access, read and write their folders with web-pages (or else files). But after that I had a problem with displaying web-sites. That is I think because such files in public folders like images and .css where restricted to read.

Second is that I can set Nginx to run as root so if it needs it will access any folder, but I read that to run as root is not a very good idea.

Hope you people understood what Im trying to tell and thank's for your help in advance. Help me find the correct strategy! Im using Debian lenny.
 
Old 11-13-2009, 07:42 AM   #2
madmadmod
Member
 
Registered: Sep 2009
Distribution: Fedora, Red Hat
Posts: 52

Rep: Reputation: 18
i do not 100% understand the problem. is webmasters the primary group for all users? did you already had a look at the S-GID bit (http://www.library.yale.edu/wsg/docs...sions/sgid.htm)? or maybe you should have look at filesystem acls (setfacl/getfacl).
 
  


Reply

Tags
debian, group, nginx, user


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Samba Users & Groups Privileges Bilal84 Linux - Networking 3 10-11-2005 08:31 AM
users & groups evilDOTnet Fedora 2 06-03-2005 05:17 PM
Backup & Restore Groups and Users jorasmi Slackware 2 03-28-2005 02:24 AM
Groups & Users Obie Linux - Security 3 08-16-2004 04:30 PM
Export Users & Groups BuRnInICE Linux - Newbie 3 05-25-2004 12:03 PM


All times are GMT -5. The time now is 06:54 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration