Welcome to MobyThreads.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in
All support for the MobyThreads Threaded phpBB MOD can now be found on welsolutions at this forum

questions about setting up users access

  
   Web Hosting and Web Master Forums (Home) -> Apache RSS
Next:  Servlets in Tomcat  
Author Message
bsema01

External


Since: Aug 26, 2003
Posts: 9



(Msg. 1) Posted: Mon Sep 08, 2003 8:48 am
Post subject: questions about setting up users access
Archived from groups: alt>apache>configuration (more info?)
Greetings everyone,

I have some questions about setting up and give users access to a httpd
server.

Ok, I have a single apache server (2.0.x) running on linux redhat 9.0,
set the whole linux box up yesterday.

Lets say I want to setup accounts, and give them webpages..

First thought was to create accounts thus make users URL's like this:

<a style='text-decoration: underline;' href="http://www.some_site.com/~some_user/" target="_blank">http://www.some_site.com/~some_user/</a>

according to the httpd.conf, you simple enable:

<IfModule mod_userdir.c>
  UserDir public_html
</IfModule>

However, this results in a 403 forbidden error on the users pages.. I
checked the permissions..

/home/some_user/public_html/ is the directory and the permissions are
correct, however, the root directory (/home/<user>) each has there own
access. removing this access will compromise the users data will it not?
How do I give the webserver access without setting these users
directories to world read?

Should I setup Aliases instead? Or Virtual servers for each?? Seams
like it should be easier to use the userdir.c here?

Anyone shed some light on this?

Thanks
-Richard<!-- ~MESSAGE_AFTER~ -->

 >> Stay informed about: questions about setting up users access 
Back to top
Login to vote
claudio

External


Since: Aug 14, 2003
Posts: 47



(Msg. 2) Posted: Mon Sep 08, 2003 3:36 pm
Post subject: Re: questions about setting up users access [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Richard Ragon wrote:

[...]
 > First thought was to create accounts thus make users URL's like this:
 >
<font color=purple> > <a style='text-decoration: underline;' href="http://www.some_site.com/~some_user/</font" target="_blank">http://www.some_site.com/~some_user/</font</a>>
 >
 > according to the httpd.conf, you simple enable:
 >
 > <IfModule mod_userdir.c>
 > UserDir public_html
 > </IfModule>
 >
 > However, this results in a 403 forbidden error on the users pages.. I
 > checked the permissions..

Please tell us the (significant) content of ErrorLog.

 > /home/some_user/public_html/ is the directory and the permissions are
 > correct, however, the root directory (/home/<user>) each has there own
 > access. removing this access will compromise the users data will it not?
 > How do I give the webserver access without setting these users
 > directories to world read? [...]

<a style='text-decoration: underline;' href="http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow" target="_blank">http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow</a>

<DirectoryMatch "^/home/.*/public_html$">
order allow,deny
allow from all
<DirectoryMatch>

If you want to configure the user-access (not host), please read the
documentation about mod_auth.

cc
--
Corrections of my english are welcome.
(please private because here its off-topic)<!-- ~MESSAGE_AFTER~ -->

 >> Stay informed about: questions about setting up users access 
Back to top
Login to vote
user2431

External


Since: Aug 21, 2003
Posts: 23



(Msg. 3) Posted: Mon Sep 08, 2003 3:40 pm
Post subject: Re: questions about setting up users access [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
"Richard Ragon" <bsema01.RemoveThis@hanaho.com> escribió en el mensaje
news:EKU6b.11514$hf1.6857@newssvr27.news.prodigy.com...
 > <IfModule mod_userdir.c>
 > UserDir public_html
 > </IfModule>
 >
 > However, this results in a 403 forbidden error on the users pages.. I
 > checked the permissions..

Redhat 9, by default, doesn't allow access to home directories. You'll have
to "chmod +x ~user" or server's user (apache) won't be able to access
public_html folder.

 > /home/some_user/public_html/ is the directory and the permissions are
 > correct, however, the root directory (/home/<user>) each has there own
 > access. removing this access will compromise the users data will it not?
 > How do I give the webserver access without setting these users
 > directories to world read?

Maybe moving web tree somewhere else?<!-- ~MESSAGE_AFTER~ -->
 >> Stay informed about: questions about setting up users access 
Back to top
Login to vote
claudio

External


Since: Aug 14, 2003
Posts: 47



(Msg. 4) Posted: Mon Sep 08, 2003 3:53 pm
Post subject: Re: questions about setting up users access [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Claudio Carobolante schrieb:
 > Richard Ragon wrote:

[...]
  >> /home/some_user/public_html/ is the directory and the permissions are
  >> correct, however, the root directory (/home/<user>) each has there own
  >> access. removing this access will compromise the users data will it
  >> not?
  >> How do I give the webserver access without setting these users
  >> directories to world read? [...]
 >
<font color=purple> > <a style='text-decoration: underline;' href="http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow</font" target="_blank">http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow</font</a>>
[...]

Sorry, I'am wrong. You can move the webspace to another location or give
apache access to this folder (group-rights). I think, to give apache
root-rights is'nt a good idea (but possible).

cc
--
Corrections of my english are welcome.
(please private because here its off-topic)<!-- ~MESSAGE_AFTER~ -->
 >> Stay informed about: questions about setting up users access 
Back to top
Login to vote
bsema01

External


Since: Aug 26, 2003
Posts: 9



(Msg. 5) Posted: Tue Sep 09, 2003 4:30 am
Post subject: Re: questions about setting up users access [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Claudio Carobolante wrote:

 > Richard Ragon wrote:
 >
 > [...]
 >
  >>First thought was to create accounts thus make users URL's like this:
  >>
  >>http://www.some_site.com/~some_user/
  >>
  >>according to the httpd.conf, you simple enable:
  >>
  >><IfModule mod_userdir.c>
  >>UserDir public_html
  >></IfModule>
  >>
  >>However, this results in a 403 forbidden error on the users pages.. I
  >>checked the permissions..
 >
 >
 > Please tell us the (significant) content of ErrorLog.

I get this exactly:
---------------------
Forbidden

You don't have permission to access /~bill/ on this server.

Additionally, a 403 Forbidden error was encountered while trying to use
an ErrorDocument to handle the request.
--------------------



  >>/home/some_user/public_html/ is the directory and the permissions are
  >>correct, however, the root directory (/home/<user>) each has there own
  >>access. removing this access will compromise the users data will it not?
  >> How do I give the webserver access without setting these users
  >>directories to world read? [...]
 >
 >
<font color=purple> > <a style='text-decoration: underline;' href="http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow</font" target="_blank">http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow</font</a>>
 >
 > <DirectoryMatch "^/home/.*/public_html$">
 > order allow,deny
 > allow from all
 > <DirectoryMatch>
 >
 > If you want to configure the user-access (not host), please read the
 > documentation about mod_auth.

I've been reading it, but it's not sinking in and it's kind of confusing
to me..

Thanks
-Richard<!-- ~MESSAGE_AFTER~ -->
 >> Stay informed about: questions about setting up users access 
Back to top
Login to vote
bsema01

External


Since: Aug 26, 2003
Posts: 9



(Msg. 6) Posted: Tue Sep 09, 2003 4:42 am
Post subject: Re: questions about setting up users access [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Claudio Carobolante wrote:

 > Claudio Carobolante schrieb:
 >
  >>Richard Ragon wrote:
 >
 >
 > [...]
 >
   >>>/home/some_user/public_html/ is the directory and the permissions are
   >>>correct, however, the root directory (/home/<user>) each has there own
   >>>access. removing this access will compromise the users data will it
   >>>not?
   >>> How do I give the webserver access without setting these users
   >>>directories to world read? [...]
  >>
  >>http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow
 >
 > [...]
 >
 > Sorry, I'am wrong. You can move the webspace to another location or give
 > apache access to this folder (group-rights). I think, to give apache
 > root-rights is'nt a good idea (but possible).

Why would you want to move the webspace to another location? Wouldn't
you want to give your users a "home" where they can put folders, files,
and webthings? Wouldn't this cause your users to go wondering all over
your root file system looking for the right folder? Personally, I don't
want them to leave their home directories.

I was also thinking of the apache access also. What's better?

1) Giving the apache account a second group of something like "webserv",
and then giving a group access to the '/home/' directory of "webserver"?

or..

2) Just giving group rights to the folder '/home/' of "apache"?

Thanks<!-- ~MESSAGE_AFTER~ -->
 >> Stay informed about: questions about setting up users access 
Back to top
Login to vote
Display posts from previous:   
Related Topics:
Apache rotatelogs vs. logrotate questions - Hi, I am just searching the perfect solution for logfile-rotation, I hope that readers of this group are somewhat familiar with that ;) The goal is to get a 24-hour rotation exactly at midnight and the logfiles named "%y-%m-%d-access.log" lo...

Basic Newbie CommonName Questions. - Hi Experts: This is my first project that has required encryption, or any of this security stuff. I've configured Apache 2.0.47 to use mod-SSL, I hope. My environment is Solaris 8 on Intel, with all recommended patches. In my..

Apache Users - I've set up apache 2 like this <IfModule mod_userdir.c> UserDir public_html </IfModule> <Directory /home/*/public_html> Allow from all Order allow,deny </Directory> when a user goes to www.mydomanin.com/~user/ it sa...

apache with multi-users - hi, what is a good way to configure permissions for apache? we set up a home web server just for fun... /var/www/html only has root access. what is a good way to set it up so ordinary users on the system can add content to the root of the default..

apache with subdirectories. Users unable to go to the subs. - I am running Slackware 9. I have a smc-7400vbr router and adsl modem. I use minidns for a dynamic dns . Everything seems to work ok but when someone connects to it: http://www.bclinux.ca I have linked some subdirectories with files in them. E.G. Ham Inf...
   Web Hosting and Web Master Forums (Home) -> Apache All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]