On Thu, 21 Oct 1999, Security Webmaster OKDesign oHG wrote:
Hi Pete, of course you are right. I didn't mean chroot itself, but something similar that can hold a user in his homedir. To protect the dirs and files with the normal chmod does not have the effect I want. Okay, some more details: The homedir of the users is set to the directories of the virtual domains. I don't want the users to be able to access the directories of the other domains. When doing chmod o-rwx for these directories, even the apache itself cannot acces them and therefore cannot display the content. I hope you know what I mean. Any hints ?
Ok. In that case I would use another machine for users which would nfs mount the directories needeed for each user from the actual server. Thus giving only access to files that clients need to access on the server, and keeping clear separation of rights. -Pete
-- Stephan