LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-14-2020, 12:42 PM   #16
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.7.1908
Posts: 4,248

Rep: Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483

Quote:
Originally Posted by Turbocapitalist View Post
If you have only one user, then that is the most convenient way.

Once you have more than one, the groups come into play. In some file systems, ACLs max out at much less than two dozen accounts, I cannot recall what the limit is for EXT4 though.
Agree to disagree, I guess.

Managing group write access is not, IMO, more convenient than simply giving ownership to the (s)ftp user and insuring that the files and directories are world readable.

Code:
mkdir /var/www/html/site1
chown user1:users /var/www/html/site1
chmod 755 /var/www/html/site1
## and set
DocumentRoot /var/www/html/site1
## for the content to be served by the "site1" domain in the apache config
Then user1 can add files to the site1 directory (which could be set up as their home directory)

ACLs are much more confusing than that (to me - and I'm not a newbie).
 
1 members found this post helpful.
Old 01-14-2020, 12:45 PM   #17
Turbocapitalist
Senior Member
 
Registered: Apr 2005
Distribution: Linux Mint, Devuan, OpenBSD
Posts: 4,362
Blog Entries: 3

Rep: Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177Reputation: 2177
I think we agree, but have been talking past eachother. The (s)ftp user is just one user account, even if it might be used by multiple people so, in that case, we are still talking about a single "user" per site. And in the case of a single user account per site chown is the way to go, we seem to agree on.
 
2 members found this post helpful.
Old 01-14-2020, 12:47 PM   #18
scasey
Senior Member
 
Registered: Feb 2013
Location: Tucson, AZ, USA
Distribution: CentOS 7.7.1908
Posts: 4,248

Rep: Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483Reputation: 1483
 
1 members found this post helpful.
Old 01-14-2020, 06:35 PM   #19
Pedroski
Senior Member
 
Registered: Jan 2002
Location: Nanjing, China
Distribution: Ubuntu 18.04
Posts: 1,778

Original Poster
Rep: Reputation: 67
In the end, so I could get on with the examples from the book, I did:

Quote:
sudo chown -R pedro /var/www/
Now I can read and write from Bluefish.

Hope that does not break any security rules!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
index.html file for apache2 from var/www/html for debian test2017 Linux - Networking 2 07-25-2017 04:38 PM
[SOLVED] get var value when var name is part of another var bilyboy65 Linux - Newbie 9 10-21-2012 10:32 AM
Nginx + Apache. Always get /var/www/html/index.html angryrabbit Linux - Server 1 11-27-2011 05:56 PM
adding index.html to /var/www/html not working dannyboy990 Linux - Newbie 1 09-30-2007 09:43 AM
index.html is not noticed in /var/www/html xviddivxoggmp3 Red Hat 1 04-23-2006 07:30 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:22 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration