HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials

HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials (http://www.howtoforge.com/forums/index.php)
-   General (http://www.howtoforge.com/forums/forumdisplay.php?f=25)
-   -   Server Admin Account (not root) can't access parts of client site due to group restri (http://www.howtoforge.com/forums/showthread.php?t=58150)

Nap 1st August 2012 12:59

Server Admin Account (not root) can't access parts of client site due to group restri
 
I'm trying to access a client's site through my own userid (a key authenticated linux account that's been added to the groups used by ISPConfig), not the root account.

However I can't access some parts of their site because the folders don't have group write (or execute) attribute set.

Is it acceptable to chmod 770 /.../clients/client0/web0/web folder?

Before attempting the above, I was trying to enable root FTP login using SSH. It's working for my other accounts, but not for root. I"ve created a folder in /root called .ssh, and applied chmod 700. Then I put authorized_keys in it and applied chmod 600. Rootlogin = without-password, and PasswordAuthentication is OFF.

I'll get there, just wondering how others achieve this.

Cheers,
Nap

till 1st August 2012 13:54

Quote:

Is it acceptable to chmod 770 /.../clients/client0/web0/web folder?
You can do this if you dont care that all scripts running as apache user can alter content in all websites then.

Quote:

Before attempting the above, I was trying to enable root FTP login using SSH. It's working for my other accounts, but not for root. I"ve created a folder in /root called .ssh, and applied chmod 700. Then I put authorized_keys in it and applied chmod 600. Rootlogin = without-password, and PasswordAuthentication is OFF.
You can do this with sftp (ssh) but not ftp and then use a client like winscp to access the server.

Nap 1st August 2012 14:04

[QUOTE=till;283093You can do this with sftp (ssh) but not ftp and then use a client like winscp to access the server.[/QUOTE]

I would like to do use SFTP for root, but it's not working. I've set it up exactly (as per OP) how I did the other SFTP users and they all work. It's just the root account that's not working for me :(

I don't understand why. /root/.ssh is the right place for the authorized_keys file, and the other settings are the same as the other users.

Nap 1st August 2012 14:06

hmmm, turns out I didn't have the root private key loaded into Pageant. Arrrrrr.....
It's working now. No need to change permissions.


All times are GMT +2. The time now is 20:40.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.