Permissions on /var/www
Giorgio Zarrelli
zarrelli at linux.it
Mon Aug 17 12:22:05 UTC 2009
Hi,
better would be to let the subdir under /var/www to be owned by
user.apachegoup and set to 755.
This way, each user can manage his contents and apache can only read them and
show their contents to visitors.
Giorgio
Il Monday 17 August 2009 14:18:38 Roy Sigurd Karlsbakk ha scritto:
> On 17. aug.. 2009, at 13.43, Armindo Silva wrote:
> > Shouldn't be owned by www-data so apache can write there?
>
> No. Allowing the apache user to change or delete its website is no
> good and allows for much easier hacking/defacing the site(s) on the
> box. If the apache user cannot write to /var/www, a security bug in
> the web server won't allow the hacker write access to /var/www, so
> less harm done.
>
> roy
> --
> Roy Sigurd Karlsbakk
> (+47) 97542685
> roy at karlsbakk.net
> http://blogg.karlsbakk.net/
> --
> I all pedagogikk er det essensielt at pensum presenteres
> intelligibelt. Det er et elementært imperativ for alle pedagoger å
> unngå eksessiv anvendelse av idiomer med fremmed opprinnelse. I de
> fleste tilfeller eksisterer adekvate og relevante synonymer på norsk.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-server/attachments/20090817/12d2e565/attachment.html>
More information about the ubuntu-server
mailing list