Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 3 > General

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 1st August 2012, 12:59
Nap Nap is offline
Senior Member
 
Join Date: Oct 2006
Posts: 138
Thanks: 7
Thanked 1 Time in 1 Post
Default Server Admin Account (not root) can't access parts of client site due to group restri

I'm trying to access a client's site through my own userid (a key authenticated linux account that's been added to the groups used by ISPConfig), not the root account.

However I can't access some parts of their site because the folders don't have group write (or execute) attribute set.

Is it acceptable to chmod 770 /.../clients/client0/web0/web folder?

Before attempting the above, I was trying to enable root FTP login using SSH. It's working for my other accounts, but not for root. I"ve created a folder in /root called .ssh, and applied chmod 700. Then I put authorized_keys in it and applied chmod 600. Rootlogin = without-password, and PasswordAuthentication is OFF.

I'll get there, just wondering how others achieve this.

Cheers,
Nap
__________________
My VPS system:
(Ubuntu 10.04 LTS, Kernel 3.4.2-linode44, Apache 2.2.14, MySQL 5.1.63, PHP 5.3.2, ISPConfig 3.0.4.6, Webmin, PureFTP & Quota, phpMyAdmin, postfix, dovecot, clamav, spamassassin, awstats, fail2ban, Jailkit, bind9, vlogger, webalizer)
Reply With Quote
Sponsored Links
  #2  
Old 1st August 2012, 13:54
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 34,586
Thanks: 792
Thanked 4,983 Times in 3,903 Posts
Default

Quote:
Is it acceptable to chmod 770 /.../clients/client0/web0/web folder?
You can do this if you dont care that all scripts running as apache user can alter content in all websites then.

Quote:
Before attempting the above, I was trying to enable root FTP login using SSH. It's working for my other accounts, but not for root. I"ve created a folder in /root called .ssh, and applied chmod 700. Then I put authorized_keys in it and applied chmod 600. Rootlogin = without-password, and PasswordAuthentication is OFF.
You can do this with sftp (ssh) but not ftp and then use a client like winscp to access the server.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
The Following User Says Thank You to till For This Useful Post:
Nap (1st August 2012)
  #3  
Old 1st August 2012, 14:04
Nap Nap is offline
Senior Member
 
Join Date: Oct 2006
Posts: 138
Thanks: 7
Thanked 1 Time in 1 Post
Default

[QUOTE=till;283093You can do this with sftp (ssh) but not ftp and then use a client like winscp to access the server.[/QUOTE]

I would like to do use SFTP for root, but it's not working. I've set it up exactly (as per OP) how I did the other SFTP users and they all work. It's just the root account that's not working for me

I don't understand why. /root/.ssh is the right place for the authorized_keys file, and the other settings are the same as the other users.
__________________
My VPS system:
(Ubuntu 10.04 LTS, Kernel 3.4.2-linode44, Apache 2.2.14, MySQL 5.1.63, PHP 5.3.2, ISPConfig 3.0.4.6, Webmin, PureFTP & Quota, phpMyAdmin, postfix, dovecot, clamav, spamassassin, awstats, fail2ban, Jailkit, bind9, vlogger, webalizer)
Reply With Quote
  #4  
Old 1st August 2012, 14:06
Nap Nap is offline
Senior Member
 
Join Date: Oct 2006
Posts: 138
Thanks: 7
Thanked 1 Time in 1 Post
 
Default

hmmm, turns out I didn't have the root private key loaded into Pageant. Arrrrrr.....
It's working now. No need to change permissions.
__________________
My VPS system:
(Ubuntu 10.04 LTS, Kernel 3.4.2-linode44, Apache 2.2.14, MySQL 5.1.63, PHP 5.3.2, ISPConfig 3.0.4.6, Webmin, PureFTP & Quota, phpMyAdmin, postfix, dovecot, clamav, spamassassin, awstats, fail2ban, Jailkit, bind9, vlogger, webalizer)
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
ISPConfig 2.2.37 is available for download. till General 10 19th September 2010 22:53
apache log issues abubin General 13 1st August 2010 17:47
messed up apache2-php5 installation klonos HOWTO-Related Questions 2 24th January 2009 23:12
Missing Email dayjahone General 7 30th June 2008 15:29
Wrong steps by upgrading ISPC Berry Installation/Configuration 14 14th November 2007 16:27


All times are GMT +2. The time now is 09:50.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.