I'm not a professional SA, but what's the best practice in securing the django settings.py file via permissions/locations to be as secure as possible in webfaction;s shared hosting environment? asked 06 Aug '11, 18:42 romangods |
Your shell user is the only user who needs access to your settings file, so you can secure it with:
Note that by default, other users won't be able to access your files since they cannot traverse the top level of your home directory. So, if you haven't mucked about with permissions there, then you don't need to make any other changes to keep your settings secure. answered 06 Aug '11, 18:52 seanf Thanks! For auditing, do you know if webfaction keeps audit trails of their own SA's access to client accounts since they obviously can get access to my home directory and view the settings file?
(06 Aug '11, 20:21)
romangods
We don't keep file-specific audit histories, but we do keep a ~3 week history of login activity (including As a matter of policy, we won't view or modify any of your files unless you open a support ticket that requires us to do so, or if there is a problem on the server (like a runaway process) that would require us to do so. In any case, you will always be informed when that happens.
(07 Aug '11, 10:32)
seanf
|