Users can read other users help?

Hi,
I've setup up apache 2.0.40 to run as a user and group apache but it can
read all user directories in /home/. So say
/home/user1
/home/user2
/home/user3
They can all read each other because the user directories have to be
chmod 770 to enable apache to read the files in the directory. I want to
stop this because if I run a perl script that reads the directories in
/home/ then things are not secure and i'll be adding some users in the
next couple of days and I want to stop them from possibly reading other
each others directories.

How do I do this anyone.

Thanks

Gary Mayor

*** Gary Mayor wrote/escribió (Tue, 13 Jan 2004 19:19:11 +0000):
> How do I do this anyone.

You can deny the "read" bit to home dirs (drwx--x--x). That way you prevent
directory listings so you have to know the name of a file if you want to
read it. Of course, www directories must be world readable anyway.

--
--
-- Álvaro G. Vicario - Burgos, Spain
--

Alvaro G Vicario wrote:
> *** Gary Mayor wrote/escribió (Tue, 13 Jan 2004 19:19:11 +0000):
>> How do I do this anyone.
>
> You can deny the "read" bit to home dirs (drwx--x--x). That way you
> prevent directory listings so you have to know the name of a file if
> you want to read it. Of course, www directories must be world
> readable anyway.

Don't rely on that I'd say, obscuring is a bad way of protecting. Probably
you need to set something in the .htaccess file in each folder to allow only
the correct user in ? But I haven't got a clue what that should be...

The suggested change of read bit on dirs would prevent opening a dir sec
indeed. Windows has no feature like that, so if I want to prevent people
from opening a directory how would I do that other then by adding an
index.html ?

jan