Re: [SLUG] Default access rights.... (questions from a newbie - continued)

• Next message: ter swartz: "Re: [SLUG] Easier Reading of Linux Firewall Logs"
• Previous message: diane: "[SLUG] Merry Christmas"
• In reply to: Patrick Grantham: "[SLUG] Default access rights.... (questions from a newbie - continued)"
• Next in thread: Mikes work account: "[SLUG] NTP problems"
• Reply: Mikes work account: "[SLUG] NTP problems"
• Reply: Larry Sanders: "[SLUG] Chap-Secrets Reject"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Monday 24 December 2001 08:13 am, you wrote:
> Thanks this will give good information on direction. What about .jsp or
> .php should they be granted execute rights? I am a bit embarrassed to
> admit that I don't fully understand Unix implementation of file security.
> I understand the basic (how to read it ls -lF, just not the affects of file
> security on other apps , such as apache.) I presume that server-side
> scripting would need "x" rights.
>

Looking through apache from SuSE I noticed that you also need to turn of SSI
by commenting out the lines 504 - 506 in:
/etc/httpd/httpd.conf

These are turned on for the demo pages but should be off (unless you need
SSI, which is not recommended on a public server for security reasons).

Steve

P.S. Thanks Matt, for umask which I missed to answer! : )

• Next message: ter swartz: "Re: [SLUG] Easier Reading of Linux Firewall Logs"
• Previous message: diane: "[SLUG] Merry Christmas"
• In reply to: Patrick Grantham: "[SLUG] Default access rights.... (questions from a newbie - continued)"
• Next in thread: Mikes work account: "[SLUG] NTP problems"
• Reply: Mikes work account: "[SLUG] NTP problems"
• Reply: Larry Sanders: "[SLUG] Chap-Secrets Reject"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 20:22:21 EDT