RE: Apache server permisssions

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



James, The best book regarding Apache Security, I have found that was easy
to follow, is Apache Security published by Wrox..... Mobily, Shrma,
Weinstein, Wilcox....  I saw it on amazon last year 


Vasiliy Boulytchev
Colorado Information Technologies, Inc.
http://www.coinfotech.com

-----Original Message-----
From: redhat-list-admin@xxxxxxxxxx [mailto:redhat-list-admin@xxxxxxxxxx] On
Behalf Of James Marcinek
Sent: Thursday, March 04, 2004 6:41 AM
To: redhat-list@xxxxxxxxxx
Subject: Re: Apache server permisssions


How hard is it to set up a chrooted server. I mean I know about the concept
but have never implemented a jail before...

Thanks,

James

>  --- "Boulytchev, Vasiliy"
> <vboulytchev@xxxxxxxxxxxxxx> escribió: >
>> Ladies and Gents,
>> 	Imagine the following scenario.  I have Apache 2.blah running as 
>> nobody.nobody (httpd.conf).  Now I have 2 virtual hosts, sarah and 
>> john.
>> The users and groups are sarah.sarah and john.john.
>>
>> 	My first question, is why can apache serve a file, whose permissions

>> are root.root?
>
> These are their permisions: -rw-r--r--
>
>
>> 	Second, is it safe to have a server setup like the above, without 
>> jailing?
>
> Always it's more safetly using chroot but it's not always necesary, 
> you're giving acces only to two users.
>
> It's my opinion...
>
> Regards...
>
>>
>> Vasiliy Boulytchev
>> Colorado Information Technologies, Inc.
>> http://www.coinfotech.com
>>
>
>> ATTACHMENT part 2 application/x-pkcs7-signature
> name=smime.p7s
>
>
> =====
> --
>
> Manuel Aróstegui Linux user 200896
>
> ___________________________________________________
> Yahoo! Messenger - Nueva versión GRATIS Super Webcam, voz, caritas 
> animadas, y más...
> http://messenger.yahoo.es
>
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>


--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

Attachment: smime.p7s
Description: S/MIME cryptographic signature


[Index of Archives]     [CentOS]     [Kernel Development]     [PAM]     [Fedora Users]     [Red Hat Development]     [Big List of Linux Books]     [Linux Admin]     [Gimp]     [Asterisk PBX]     [Yosemite News]     [Red Hat Crash Utility]


  Powered by Linux