-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Nick Kew wrote: > On Saturday 30 September 2006 14:23, Jay L. T. Cornwall wrote: >> >> <Directory /home/*/public_html> >> Alias /dav /home/$user/private_dav >> </Directory> > Forget the alias. Just let them have a subdirectory of public_html, > and make sure nothing uploaded can be executed! This is one approach, although the problem of per-user authentication remains. I think a solution to the latter would provide one for this approach as well, which I prefer as a little tidier. It also prevents undue concern for private files being held in a subdirectory of public_html, although obviously there is no security issue either way. > mod_macro would (also) make it less painful. Ah, I hadn't seen this one. Well there's a handy last resort, if nothing else. :) - -- Jay L. T. Cornwall, http://www.esuna.co.uk/~jay/ PhD Student Imperial College London -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFHwa9oHnC75cy2zgRAgn9AJ4vwYq28T+1DHpEwX/22KLUWZmwQgCeNA6H ZPnbj9VoMEpKMKp3UNykFko= =zoE7 -----END PGP SIGNATURE----- --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|