Hi all,

I am new to web services and Linux but would like to learn...

Is there a site that explains, in simple terms the correct method to secure
a web site. I have a basic site running, however I get in a real mess when
trying to install additional folders or services. Invariably I get an error
indicating that access is denied for a particular directory.

My basic configuration is this:

Document root on a separate volume /www
Apache running as user and group 'apache', I set my directories below www to
2664, with ownership of apache.webuser. The user who is ftp'ing files is a
member of the group webuser.

Can someone please offer guidance as to the correct for my site. I have
tried to install phpbb and mambo dynamic php based directories, but get the
404 error when trying to connect. I know its permissions related, but get
stuck trying to implement them correctly.

Thanks in advance,

Phil

[ Post a follow-up to this message ]

Phil <phil.g4iio@ntlworld.com> wrote:
> Apache running as user and group 'apache', I set my directories below www 
to
> 2664, with ownership of apache.webuser.

Directories must be 755 (read and execute by everyone).
Files must be 644 (read by everyone)

Davide

--
| Reality is bad enough, why should I tell the truth?
|
|
|

[ Post a follow-up to this message ]