On 4/30/05, Corey <corey_s@xxxxxxxxx> wrote: > > Hello! > > I'm trying to understand how to keep user's home directory permisions tight, > while still allowing apache to access their respective public_html UserDir's, > but have become somewhat stuck. > > At the moment I cannot seem to get apache to be able to read the UserDir's > without chmod'ing 755.... I want /home/<user> to be 750. > > I thought the SuexecUserGroup directive in the VirtualHost's would acheive > this, but apparently I'm wrong. Suexec affects only CGI scripts, not normal request processing. Apache must be able to read all the files it is going to serve using the User/Group specified in httpd.conf. In general, this means giving at least global search permission (+x) to the /home/user directories, although you could get away with group search permissions if you make all the home directories owned by a group that the apache User/Group belongs to. Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|