Differences

This shows you the differences between two versions of the page.

--- blog:set_rights_of_files_in_public_html [2011-03-11 07:52] – brb
+++ blog:set_rights_of_files_in_public_html [2011-03-11 07:55] – brb
@@ Line 2: / Line 2: @@
 Set rights of user /home/*/public_html directors in a secure and useful way
-- all files/directories get chown user:www-data, so users own them and the webserver has group access
+  - all files/directories get chown user:www-data, so users own them and the webserver has group access
-- group www-data is added g+r for files (webserver can read all files) g+rsx for directories (webserver can read and change into all directories)
+  - group www-data is added g+r for files (webserver can read all files) g+rsx for directories (webserver can read and change into all directories)
-- o-rights (for all) are completely removed, so shell users can't read files of other users (possibly containing passwords etc).
+  - o-rights (for all) are completely removed, so shell users can't read files of other users (possibly containing passwords etc).
+You can run the script using ''sudo fixphrights.sh'' or add a cron-job to go over all public_html directories every hour or so.
+Note: Users should be informed what happens, because a lot have taken the bad habit of doing chmod 755 to everything, and they will be confused if their files go back to 750 every hour.
+Ref: http://ubuntuincident.wordpress.com/2010/11/21/setting-rights-for-public_html/
 <code bash>
@@ Line 64: / Line 69: @@
 done
 </code>
-Ref: http://ubuntuincident.wordpress.com/2010/11/21/setting-rights-for-public_html/
 {{tag>linux bash webserver}}