[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: DAV



On Thu, Oct 07, 2004 at 11:57:27AM -0400, Alan Cox wrote:
> On Thu, Oct 07, 2004 at 04:49:10PM +0100, Joe Orton wrote:
> > The *client* doesn't care about ~user directories.  Having a DAV server
> > which can manipulate files in ~user directories under ownership of said
> > user requires running the server as root, which is really not something
> > you want to do.
> 
> Your apache needs to have setfsuid rights, that is all

Are you talking about capabilities or SELinux policy there?  Does the
capability bit not then allow children to setfsuid(0) and write files as
root?

joe


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]