Re: Re[4]: apache FollowSymLinks and SymLinksIfOwnerMatch question

Patrick Hsieh said: > OK. What I mean is, since I have to turn on FollowSymLinks. I wish apache > only follow the symblic links under /var/www > Sorry for the poor explaination. no problem. now I know exactly what you want and its easy to do, in access.conf (or httpd.conf whatever you want to u

Re: apache FollowSymLinks and SymLinksIfOwnerMatch question

On Thu, Sep 26, 2002 at 01:30:23PM +0800, Patrick Hsieh wrote: > Now that apache has FollowSymLinks and SymLinksIfOwnerMatch options, > there's still some security issue. For example, someone cp /etc/passwd > to his home directory(/home/foo/passwd), create a symbolic link from > /home/foo/passwd t

Re[4]: apache FollowSymLinks and SymLinksIfOwnerMatch question

Hello "nate" <[EMAIL PROTECTED]>, > > your question "Is apache any configuration to avoid symbolic link across > documentroot?" is not worded in a way that I can understand what your > really asking. try to re-phrase it. unless the above answers your > question of course :) > > nate OK. What

Re: Re[2]: apache FollowSymLinks and SymLinksIfOwnerMatch question

Patrick Hsieh said: > Hello "nate" <[EMAIL PROTECTED]>, > > OK. This is my situation. I am running mutiple apache server which all > mount nfsserver:/var/www/ as their local /var/www and share the same > storage via nfs. > > Is apache any configuration to avoid symbolic link across documentroot? I

Re[2]: apache FollowSymLinks and SymLinksIfOwnerMatch question

Hello "nate" <[EMAIL PROTECTED]>, OK. This is my situation. I am running mutiple apache server which all mount nfsserver:/var/www/ as their local /var/www and share the same storage via nfs. Is apache any configuration to avoid symbolic link across documentroot? I hope to keep the consistency of

Re: apache FollowSymLinks and SymLinksIfOwnerMatch question

nate said: > IMO ldap is more secure then NIS/NIS+ because it does not depend > upon RPC services(which historically have many security problems). one more thing to mention in regards to LDAP. With PAM/NSS LDAP you can configure your directory server to require authentication for queries, so a

Re: apache FollowSymLinks and SymLinksIfOwnerMatch question

Patrick Hsieh said: > Hello list, > > Now that apache has FollowSymLinks and SymLinksIfOwnerMatch options, > there's still some security issue. For example, someone cp /etc/passwd to > his home directory(/home/foo/passwd), create a symbolic link from > /home/foo/passwd to /var/www/hidden_dir/passw

apache FollowSymLinks and SymLinksIfOwnerMatch question

Hello list, Now that apache has FollowSymLinks and SymLinksIfOwnerMatch options, there's still some security issue. For example, someone cp /etc/passwd to his home directory(/home/foo/passwd), create a symbolic link from /home/foo/passwd to /var/www/hidden_dir/passwd. Since the owner maches, it w