Newbie linux permission question

Marius Toma marius at pro-websolutions.com
Wed Dec 6 15:17:38 MST 2006


Thanks Judd,

The thing is, I want apache (nobody) to be able to edit his own files, 
but not the ones created by the ftp user! So the permission should look 
like: 775 (for apache created files) I'm assuming.
Now I'm assuming that the directory permission should change to 775 also...

ALSO... Do I need the execute permission (user or group)? Now apache 
creates the files with 644!

I figured out how to change the group for the new created files by 
apache (in httpd.conf), but from where can I set up the permission to 
664 instead of 644?

Regards,
Marius

Judd Pickell wrote:
> Okay, you don't want a valid user for nobody account. The reason it is 
> nobody is for system protection (since it doesn't exist and basically 
> only has access to apache files).
>
> The basics of what you want to do is pretty simple, however I don't 
> know all the steps. The basics are:
>
> 1) create a group that will have the ability to read/write the files 
> in question.
> 2) Assign the ftp user account to the group.
> 3) Modify Apache's config so that it creates files with a 575 
> permission instead of the normal 655.
> 4) Modify Apache's config so that it creates files with the 
> owner/group of nobody/<group you created>
> 5) chown the current directory to the nobody/<group you created>
> 6) chmod the current directory to 575
> 7) Modify the ftp users' config so that it creates files/folders with 
> the group id of the <group you created>
>
> Basically the ftp user can do anything with the files in question. The 
> apache can only create the files, but can not modify them (r-xrwxr-x) 
> and can display them. I hope this helps.. :)
>
> Sincerely,
> Judd Pickell
>
>
> On 12/6/06, *Marius Toma* <marius at pro-websolutions.com 
> <mailto:marius at pro-websolutions.com>> wrote:
>
>     Hi guys,
>
>     I'm new to linux so do not kill me!
>
>     This is what I want if is possible:
>     I want to be able to create a new user that can overwrite nobody's
>     (apache user) files, but I don't want nobody to change the files
>     that I
>     created with the new user!
>
>     The situation:
>     I have a website, that has an online editor so I can edit/create html
>     files. I want with the new user to be able to edit these files
>     (Ex: via
>     FTP, ssh) , but also upload new ones that can not be editable via the
>     online editor
>
>     How should the UID/GID look like for the new user?
>
>     I created a new user and gave him the same UID as nobody (so I can
>     make
>     the changes I want, for now)... but is not what I want!
>
>     Thanks,
>     Marius
>     ---------------------------------------------------
>     PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>     <mailto:PLUG-discuss at lists.plug.phoenix.az.us>
>     To subscribe, unsubscribe, or to change  you mail settings:
>     http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
>
> ------------------------------------------------------------------------
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change  you mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss


More information about the PLUG-discuss mailing list