mod_auth_pam vs sshd login
Kenneth Porter
shiva at sewingwitch.com
Mon Oct 4 18:35:36 UTC 2004
--On Monday, October 04, 2004 7:32 PM +0100 Jason Clifford
<jason at ukpost.com> wrote:
> The usual way is to add the user the apache process runs as to a special
> group which you give permission to read the file.
So, for instance, create the group shadow, set the owner of /etc/shadow to
root.shadow, and mode to 740.
> Do remember to ensure that only those sites that *must* have access to
> the file are run in the apache process running as that user.
I'm not sure how I'd set a per-site run-as-user. Probably not immediately
critical as I'm not running multiple sites on this server right now, but it
would be useful to know how to set that up if needed. Do you have a
suggestion for a Google expression for that?
More information about the Pam-list
mailing list