James, The best book regarding Apache Security, I have found that was easy to follow, is Apache Security published by Wrox..... Mobily, Shrma, Weinstein, Wilcox.... I saw it on amazon last year Vasiliy Boulytchev Colorado Information Technologies, Inc. http://www.coinfotech.com -----Original Message----- From: redhat-list-admin@xxxxxxxxxx [mailto:redhat-list-admin@xxxxxxxxxx] On Behalf Of James Marcinek Sent: Thursday, March 04, 2004 6:41 AM To: redhat-list@xxxxxxxxxx Subject: Re: Apache server permisssions How hard is it to set up a chrooted server. I mean I know about the concept but have never implemented a jail before... Thanks, James > --- "Boulytchev, Vasiliy" > <vboulytchev@xxxxxxxxxxxxxx> escribió: > >> Ladies and Gents, >> Imagine the following scenario. I have Apache 2.blah running as >> nobody.nobody (httpd.conf). Now I have 2 virtual hosts, sarah and >> john. >> The users and groups are sarah.sarah and john.john. >> >> My first question, is why can apache serve a file, whose permissions >> are root.root? > > These are their permisions: -rw-r--r-- > > >> Second, is it safe to have a server setup like the above, without >> jailing? > > Always it's more safetly using chroot but it's not always necesary, > you're giving acces only to two users. > > It's my opinion... > > Regards... > >> >> Vasiliy Boulytchev >> Colorado Information Technologies, Inc. >> http://www.coinfotech.com >> > >> ATTACHMENT part 2 application/x-pkcs7-signature > name=smime.p7s > > > ===== > -- > > Manuel Aróstegui Linux user 200896 > > ___________________________________________________ > Yahoo! Messenger - Nueva versión GRATIS Super Webcam, voz, caritas > animadas, y más... > http://messenger.yahoo.es > > > -- > redhat-list mailing list > unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe > https://www.redhat.com/mailman/listinfo/redhat-list > -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
