Security :: When To Give Write Access To Folders On A Web Server
Feb 3, 2011
on the following link [URL] section 2 says
Quote:
The following directories need to be readable, writeable and executable for everyone:
* dokeos/main/inc/conf/
* dokeos/main/upload/users/
* dokeos/main/default_course_document/
* dokeos/archive/
[Code].....
I am not at all convinced by the idea of giving permissions to read,write and execute as these Learning Management Systems say. Let me know what you people have to say? What is the best practise in such situations? I have to get all these LMS run on same web server.
View 2 Replies
ADVERTISEMENT
Feb 8, 2011
So, I am looking to implement an FTP server with Isolated Client accounts/directories where a client can only access what's in their directory. I also need to provide my internal user's (content managers) the ability to upload, delete, etc from all of the Client accounts. The simple part is creating the secure client accounts. It's a matter of changing DIR_MODE in adduser.conf to 700 or 770, creating a user, having the FTP server chroot them to their home directory, revoke/restrict shell/ssh access and maybe even slap on some ACL to prevent botched permissions.The hard part is figuring out how to give my power users the ability to access all of their folders without thrashing security.
My first thought was to put all of the client user-groups in a parent group and having my internal users inherit group permissions..but you can't have groups inside of groups.My second thought was to put all of the client users in the same group and prey that the FTP chroot is enough to keep them from poking around but then I have the problem of how do my internal users access other user directories if they are chrooted. Do I create a second server without chroot.do I create some weird nested homedir structure..I honestly have no idea how to satisfy both requirements (secure client accounts and privileged user accounts). I need my privileged users to authenticate against Active Directory via Likewise open, LDAP, etc and I don't care how the clients authenticate. Though, I would prefer to have both file and FTP-server level protection just to make sure no one can see the other client's data.
View 1 Replies
View Related
Mar 23, 2011
is there a way to give an application (controlaula) write access to a folder /var/lib/monitorprofe and files on that folder.
View 3 Replies
View Related
May 15, 2010
I recently installed Ubuntu 10.04 using Wubi on an ACER Aspire 5000 XP laptop. Everything runs ok and I can access my Windows folders from Ubuntu through the host directory but only as Read Only. I have checked to make sure that the Windows folder I want to access (My Documents) is not designated as Read Only in Windows.
View 1 Replies
View Related
Oct 23, 2009
We use PAM to control access to our RHEL4 servers. We would like PAM to give a message, of our choice, when users who are not allowed to login try to login. PAM's default is to let the user try 3 times without any explanation.
View 7 Replies
View Related
Apr 29, 2011
I have a log server that collects logs from all the cisco devices on our network.he company policy states that any logs should only be accessible by root. So I have the following permissions set on the directory, as well as everything inside the directory where the cisco logs are kept.
Code:
drwx------ 65 root root 4096 Apr 29 7:38 rsyslog
The cisco folks are requesting access to these logs, which is allowed by company policy.
[code]...
View 12 Replies
View Related
Apr 23, 2011
I Have Configure Samba server in Centos, I need give permission like for some user(5User) can able to read and write the particular folder, and again i need give some another user(6user) can only read permission for same folder.
View 1 Replies
View Related
Feb 25, 2011
I am trying to write a perl script which will give an interactive session to a user to execute command on the server. I have written a small script to do this :
Code: !/usr/bin/perl -w
use strict;
use Net::SSH::Perl;
my $host = '192.168.1.1';
my $username = 'user';
my $login_passwd = 'test123';
[Code]...
View 2 Replies
View Related
Jul 9, 2010
I have a problem access privileges on several folders like this one
Code:
It clearly says that I have owner and group read write and search (it's a directory) privileges.
I login as user master part of group events
Code:
But I can't access the folder (Permission denied).
View 9 Replies
View Related
Jun 12, 2011
How can I give 1 user access to mount 1 particular filesystem? This is for Debian 6 64bit.
View 4 Replies
View Related
Mar 30, 2010
I have recently secured a server by preventing root from logging in via SSH. Now I log in with a non-root account and use 'su' when necessary.However, now I can't do something I used to do, which is open 'sftp://user@ipaddress' in nautilus and be able to edit files as root. Is there anyway to get nautilus to give me root permissions on the server? Or at least end up with root permissions in a GUI text editor on my computer? I don't mind if I have to use bash to start the process, once I can get a GUI for editing files.
Note 1: Yes, I realize I could ssh in and use nano/vi etc, but I'd rather use my graphical text editor.
Note 2: The server does not run X, so I can't just forward it.
View 1 Replies
View Related
Mar 9, 2011
Ive managed to install samba, I've shared a folder. I can access from a Windows 7 machine via \ubuntupublic. I can put files in the folder form the ubuntu machine and edit them on the windows box. I can put files in the folder/share from the Windows box but then I cannot edit them on the Ubuntu machine (they are read only and have a "Lock" over them). I can fix this by going to the properties of the file/folder in Windows and manually assigning "Everybody" full control (then the lock disappears and all is well.) I want read/write access to all the folders contents from both machines all the time (security is NOT a concern I WANT the permissions wide open) what am I doing wrong?
View 7 Replies
View Related
May 2, 2011
I had to reinstall Ubuntu (Natty) on a brand new computer and while installing I setup the datas partition to be mounted in /usr but now I can't have access to files I put in there even if I setup the group/user permission! I can accezz /usr/Music but all files are locked
View 5 Replies
View Related
Nov 28, 2010
How do I set up a server to where it does not give a password prompt to access a shared folder?
View 1 Replies
View Related
Feb 15, 2011
I want to give access to a student to a server in order to make repeated trials of traceroute to different hosts. We have realized that it is preferable to use the -T option, as it sends TCP packets that are less commonly blocked by firewalls. However, this option is only available to superusers, and I don't want to grant the student such privileges.
View 2 Replies
View Related
Apr 3, 2009
I have several directories, each owned by root and a group of the same name,By setting the sgid bit, I made sure that newly created files and directories are owned by the correct group, and that directories have the sgid bit set too.On each newly created directory or file, the permissions are set to 755. This is because this is the default umask, and I cannot change a users umask. I actually only want files created below a particular directory to have group write access, inheriting this behaviour to newly created directories properly.I'm not on samba or NFS, I have to do this for SSH users.The filesystem is ext3.I started to fool around with ACLs, but couldn't find what I was looking for.
View 3 Replies
View Related
Feb 27, 2010
I am using RHEL5 in that i have installed samba rpm as well as created samba users while access the shared folders in WINDOWS i got "access dined" error.
View 1 Replies
View Related
Jul 1, 2010
I installed samba server in my external HDD. But it is not shown in system ----> Administration. Is there any problem. Then How to give permission to access home folder.
View 3 Replies
View Related
Dec 24, 2009
We have a ftp server. Red Hat Linux release 9 (Shrike) working on the this server.Ftp server running very good. But I want to give 2 folder permission an user. Is this ssible?Example,We have a user that name is aslan. I want to connect this user to www/html/company/adek folder with ftp connection. Then I am changing this user home folder in the /etc/passwd as aslan:x:511:511::www/html/company/adek:/bin/bash.This user doing succesfuly ftp connection to this folder with a ftp program as Filezilla.Now, I want to also give a different folder connection this user as www/html/company/meleka.Is This user can be connect this 2 folder with ftp connection? Is this possible? Can i give 2 or any more folder connection at the one user account?
View 2 Replies
View Related
Sep 17, 2009
I am new to Linux.I have installed dual boot, XP(NTFS) and Enterprise Linux Server on same desktop.Now how can I access windows files & folders from Enterprise Linux Server?
View 4 Replies
View Related
May 20, 2010
I am trying to write little quiz to give different answer when given yes or no reply, however I got stuck with this. I am very very new to Python so please have patience. Can someone give me a sugesstions?
This is my code so far:
name = raw_input("
What is your name")
print "
Hello, " + name + "."
[Code]...
View 8 Replies
View Related
Dec 4, 2009
I am using samba t share my files.I am sharing /media/MEDIA folder. it is a ntfs partition mounted with ntfs-3g with write/read access from linux.I can see and browse my shares and also create files in the root of this partition, ie /media/MEDIA, but in its subfolders i do not have write permissions.
another interesting thing is that i have permission to create directory and delete files everywhere and in any folder, subfolder but when trying to create files i get not enough free disk space error.by the way i dont know if this config file is correct, i find as template in internet.
View 8 Replies
View Related
Mar 21, 2010
I'm running Ubuntu 9.1 server on an PII Compaq. Read an article "Samba: How to share files for your LAN without user/password" [URL] and some others and can see and pull up files, can't change or delete. Here is my smb.conf:
# Sample configuration file for the Samba suite for Debian GNU/Linux.
# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options most of which
# are not shown in this example
# Some options that are often worth tuning have been included as
# commented-out examples in this file.
# - When such options are commented with ";", the proposed setting
# differs from the default Samba behaviour
# - When commented with "#", the proposed setting is the default
# behaviour of Samba but the option is considered important
# enough to be mentioned here .....
View 22 Replies
View Related
Jun 8, 2011
I have around 150+ folders in one directory. All contains some pdf files. Now i want to give some prefix no. to folder only not the files inside. How can i give the prefix to all my folders?Eg : Suppose i want no. 8562 then i want it like as follows
OLD FOLDER NEW FOLDER
ABC/ 8562-ABC/
AABC/ 8562-AABC/
View 2 Replies
View Related
Mar 20, 2010
how do i give group write permissions in fstab? i'm trying to mount a virtualbox shared folder. currently my fstab looks like this Code: Share_Name /mnt/point vboxsf rw,uid=1000,gid=1000 0 0 i want to give both the owner and group, write permissions. currently, only the owner has write permissions, and group read with these mount options.
View 3 Replies
View Related
Aug 6, 2010
Just finished downloading a game in .run format, i downloaded it to my Home>Downloads folder and ran these commands in terminal: (game is tremulous if it matters)
chmod +x tremulous.run
./tremulous.run
It started it up in the terminal and i began working my way through the installation process, and i tried to install it into my Home>Games folder. (Is it supposed to be home>games or your username>games?)
and it said PERMISSION DENIED. No write permission to Home/Games/
How do i give myself read and write permissions to my game folder?
View 3 Replies
View Related
Aug 14, 2010
Hi,
I'm pulling my hair out trying to figure out what is wrong with my Samba share. I have set up a directory /samba to serve up some movies, music, etc, on an Ubuntu 10.04 Server box. For now, I have given that directory 777 permissions, along with the subfolders:
Code:
drwxrwxrwx 4 michal michal 4096 2010-06-22 18:02 Apps
drwxrwxrwx 3 michal michal 4096 2010-06-22 19:02 Music
drwxrwxrwx 3 michal michal 4096 2010-08-14 19:27 Pics
drwxrwxrwx 5 michal michal 4096 2010-06-22 19:48 Video
This is how my smb.conf file looks like for this particular share:
Code:
[share1]
comment = share1
browsable = yes
path = /samba
write list = michal
Furthermore, I went ahead and mapped the Samba user to my Linux user account in /etc/samba/smbusers:
Code:
michal = "michal"
When I try to login from a Windows machine using michal as the username, I can see the folders, but I am unable to create new files on the share. Considering that the file system permissions are liberal on the share directory, I have no clue as to why I'm still getting denied write permission.
Any ideas? Thanks!
View 1 Replies
View Related
Apr 23, 2011
I have a site hosted on a cheap hosting company and I need to allow write access to certain users in certain directories, sometimes on a file basis.
Q: how do I do that in a .htaccess file?
I have never used .htaccess although from what I read it looks straightforward but when I try it, I get a "500 server error" even with the example .htaccess file the hosting company suggested I use. (I have informed the host as they require and am awaiting their answer)
The site is automatically set up with a couple of dot file in the root directory when I got it, they are:
.htaccess file
AuthType Basic
AuthUserFile "/home/mydomain/www/www/.htpasswd"
AuthName Limited!
require valid-user
Q: Is there in this something overriding my .htaccess in a bad way? (googling for AuthName shed no light on my problem)
.htpasswd
mydomain:$apr1$vcPc9...$kz4vmtvfznKfFmHktN0CI0
Bill:$apr1$C.FLI...$KmvqrHFt6i/.rMhfREtRV0
I added the user Bill, apparently successfully, the first line and .htaccess were set up by the host.
View 2 Replies
View Related
May 9, 2011
There is a folder that is owned by user tomcat6: drwxr-xr-x 2 tomcat6 tomcat6 69632 2011-05-06 03:43 document. I want to allow another user (ruser) write permissions on document folder. The two users (tomcat6 and ruser) does not belong to same group. I have tried using setfacl: sudo setfacl -m u:ruser:rwx document
but this gives me setfacl: document: Operation not supported error.
View 1 Replies
View Related
Feb 18, 2011
i want to write shell script that give a number between 1-3444 from user and if user enter out of range number give error e.g number must between
read -p "plz Enter Number " p
while [ $p != [1-9] -o $p != [1-9][0-9] -o $p != [1-3][0-4][0-4][0-4] ]
do
read -p "plz Enter Valid Number" p
done
but this have an error in while statement ! two many argument
View 3 Replies
View Related