I don`t know if I can do this but here
goes.
I have set up a small Suse 8.2 box to use as a
student web server. The idea is that students ssh in and put
their web pages into ~/public_html and the rest of
the school can see them.
I will be setting the home directory
permissions to user.nogroup, with user rxw, nogroup rx the web server is
running
as nogroup.
This all seems to work, with students not being
able to download (via ssh anyway) the source files of other
users.
What I would like to do is add php scripting
support, without adding too many security holes.
I have already set safe mode on, but not sure how
secure that is.
From much goggling it seems I really should use
suexec (ready compiled on Suse 8.2) and php as a cgi.
However I can`t seem to find out how to set
this up. What I really want to do, is allow users to scp .php files to
the server
and the php software to be run as that user via
suexec.
There seems to be a method of using #! /usr/bin/php
at the top of the script, but I would like to avoid having to do this
as it would then break things like phpmyadm on the
box.
Anyone else set up something similar?
Thanks
Rob Keeling
--
I love deadlines. I love the whooshing
noise they make as they go by.
|