[plug] [OT] Password security with shared web hosting
Cameron Patrick
cameron at patrick.wattle.id.au
Wed Aug 25 22:01:00 WST 2004
To clarify:
Cameron Patrick wrote:
> > Thanks for the idea. I categorise this under the 'suexec' category of
> > activities, which is fine if you can have such set-uid executables.
>
> Ahh, 'suexec' was the mod_something that I was trying to remember the
> name of. Looking at the docs just now, why is it not suitable for
> what you want?
James Devenish wrote:
> Cameron suggested: a module that does this "automically" based on file
> ownership, thereby protecting users against themselves and their turnkey
> solutions.
The suexec docs don't mention doing it by file ownership, but they do
mention su'ing based on virtual hosts and user home directories, which
I'd imagine would cover a lot of situations.
Cameron.
PS. "automically" ? Tsk, tsk.
More information about the plug
mailing list