DocumentRoot in user's homedir

Hi,

Is there a way to have the DocumentRoot of virtual domains pointed to /home/xx/www without having to set the user's homedir worldreadable?

Putting "User xx" within the <VirtualHost> only affects cgi-scripts! :-(

Thanks,

Bugger

Yes. Chmod /home/xx 755 and chmod 750 /home/xx/www and chown it xx.user_apache_runs_as.
Other users with shell access can't access to your /home/xx/www dir, but still, if they can write a simple script and be able to view everything in /home/xx/www/ because that script runs as user_apache_runs_as.

Then my users would complain that they can't upload files to their www-dir using FTP ...

How UNsafe is it to run apache as root?

Or is that out-of-the-question??

>> then my users would complain...

Why can't they? Say user_apache_runs_as = http, bob's www dir would be owned by user bob himself and http group. As I said, chown xx.user_apache_runs_as, xx refers to bob and user_apache_runs_ refers to http in this case. Chmod 750 = drwxr-x---, bob has full RWX permission while http group has RX and that's sufficient to serve webpage.

>> How UNsafe is it to run apache as root?

If you are the only person who has a web dir and also the only person who has access to your box, then it's safe, but you still know what you are doing. Your Apache seems to serve multiple users, then it's unsafe and anyone can do bad things to your server.