Hello,
We have too much clients whom complain their web sites doesn’t work.
9/10 times it is because they have deleted the content of /home/account/ and put there all their web pages. It happens even if we send them instructions on how to and where to upload their web pages. I’m pretty sure you know how some of them are. They don’t read instructions.
When we explain them why it happens the answer is always the same : “well I thought I was in my webspace, and so I thought I could do what I’d like without break anything”
It is not a huge pbm, it not happens every days, and when it happens there is only this client that is impacted.
There is a much more important pbm to this kind of issue (the default path of ftp).
They are also able to rename the var directory. See this other thread
If they do this, then the HTTPD server can’t restart, because it doesn’t find the errors log file.
This case is much more bad as it impacts every body on the box.
So could it be possible to have by default the /home/*/var dir no rename able ?
Personaly we do not see yet the need to have as default ftp path the /home/account dir (maybe there is good reasons to this, but we can’t figure out which one, maybe the backups…)
We think it should be better to have a FTP DEFAULT PATH config, for all siteworx accounts, set to /home/account/public_html rahter than /home/account
Like this all siteworx accounts could never break their document_root and best, they never could crash the HTTPD restart process by renaming the var dir.
To conclude :
-
Is it possible to set the default FTP path for to the public_html symlink (or document_root). This default conf resolve all these issues
-
If not (why?) would it be at least possible to non allow, BY DEFAULT, a user to rename the var dir ?
Hope this contrib will help to improve the overall security in nodeworx
Pascal