LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-25-2008, 11:17 AM   #1
neocontrol
Member
 
Registered: Jul 2005
Posts: 273

Rep: Reputation: 31
Changed to: Best practices for apache and user access?


I have a webserver. It has muliple developers needing access to the htdocs folder, like creating new subfolders, adding files, modding files, etc.

So to start with, my apache server is ran as apache:apache. Everything apache was owned by .... apache:apache

When a user1 uploads something new, it's owned by him. But if user2 wants to add to it, or mod that, he won't have access.

My work around has been to have things owned as 1 particular user, say like apache-dev, and all users would upload and make changes, and saves as that user, so I don't need to worry about other users being stopped.

I think there should be a better way, but I don't want to just run around testing it. My thought is this.

Make the htdocs folder owned by some group, like apache-dev. Make everyones default group - apache-dev.

Would this allow access to all my developers? Is this the best route to take as far as security from the outside?

Thanks for any suggestions,

Last edited by neocontrol; 01-25-2008 at 03:26 PM. Reason: poorly asked questions
 
Old 01-25-2008, 04:04 PM   #2
neocontrol
Member
 
Registered: Jul 2005
Posts: 273

Original Poster
Rep: Reputation: 31
Figured out what I'm going to do, ACL's.

http://www.enterprisenetworkingplane...0954_3077971_1
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
default access permission when we copy files bluenectar Linux - General 2 03-04-2007 10:09 PM
Can I set default file/directory permission levels? toes Linux - Security 5 01-05-2007 07:21 PM
Set default permissions for new files and folders jmkelm08 Linux - General 1 09-11-2006 09:26 PM
Regarding default uploaded file permission in apache chandramani Linux - General 0 03-23-2006 10:11 AM
Lost permission on uploaded files beatlelane Linux - Security 5 09-11-2003 03:36 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:52 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration