On Sat, 2004-03-27 at 08:11, Gavin wrote:
> I have a context which is symlinked to a users directory. The
> in the context want to access sections in a config file, yet are
> to do so, due to the permissions. App server runs as a non-root user
> The only possible way this would work is either to run an app server
> each user, or to allow the config file readable by all. Yet this is a
> security issue, the config file contains passwords.
> Can anyone suggest ideas?
What kind of config file is it? One idea would be to split it up --
put each user-specific, sensitive passwords in a config file somewhere
in that users' directory (you probably don't want it in the context
itself for security reasons). All the rest of the configuration (which
it sounds like the users only need read-access to), can be in a global
config file with read access.
Jason D. Hildebrand