Hi out there, I have the following three problems: 1. rights in /var/www/webx/web are set to world-readable --> this means all joomla-admin-users can install joomla-Explorer and can read the configuration.php and see the db-password et.al. 2. apache runs as www-data while the domain-groups are set to webX (/var/www/web/...) --> if the instance starts as a user in group webX then the first questions is solved (I think) if and only if ispconfig sets the rights in the correct way? 3. webX-Users are often deleted and new created so that these users are also deleted in manually created unix-groups. I have a subversion group an would like to add some users which in turn get rights to read and write to specific repositories. I think #1 has #2 as reason --> is it possible to run apache as user for each domain instead of www-data and create the rights accordingly? Is it possible to patch ispconfig not to delete users so that they persist in own unix-groups? I have searched and googled a lot but don't really understand the influence of apache-configuration on ispconfig. Is there a solution for my problems - or a workaround? many thanx in advance for any suggestions! Thomas
This is a common problem in shared hosting enviroments, one answer is to use suphp: http://www.howtoforge.com/install-s...tions-for-use-with-ispconfig-2.2.20-and-above
Thanx Till, suphp will help for php. Does it also solve the world-readable problem? how can I solve the disappearing of ispconfig-users in own unix groups? (Sorry for the late reply, I've been ill a longer time :-( ) TIA Thomas
After you installed suphp, the suers will not be able anmore to "leave" their home directory with a php script. ISPConfig users can not be added to custom groups. If you want to change this behaviour, you would have to rewrite the way that ISPConfig manages the system users.
