Hi Brazen,
Right you are, that was not an appropriate example. I meant that all
virtual host under the /var/www has to be owned by the same user and
group www-data in case if you have only one user to manage many virtual
hosts. www-data as an owner of root directory is not a secure option.
Sas
On Mon, Aug 17, 2009 at 12:00 PM, Alexander Kraev wrote:
> Hi,
>
> It depends on web-server architecture and how many sites you are going
> to run inside /var/www.
>
> root:root is good for /var/www if you are running many sites in
> /var/www. Let's say:
>
> /var/www/example.org
> /var/www/exampl
Hi,
It depends on web-server architecture and how many sites you are going
to run inside /var/www.
root:root is good for /var/www if you are running many sites in
/var/www. Let's say:
/var/www/example.org
/var/www/example.net
/var/www/sub.example.org
Each of these directory has to be owned as
I've found putting the web root in user space preferable to /var/www. Since
many users have multiple websites I place each web tree under
/home/user/public_html.
Still leaves rafts of security question for which I find no complete
solution other than virtual private web servers but if I remove she
IMHO I feel that the current permissions of root:root 755 are
sufficient. Should a user/application have specific requirements then
this can be easily changed.
Regards,
Charles Hooper
Giorgio Zarrelli wrote:
> Hi,
>
>
> better would be to let the subdir under /var/www to be owned by
> user.apa
Hi,
better would be to let the subdir under /var/www to be owned by
user.apachegoup and set to 755.
This way, each user can manage his contents and apache can only read them and
show their contents to visitors.
Giorgio
Il Monday 17 August 2009 14:18:38 Roy Sigurd Karlsbakk ha scritto:
> On 17
On 17. aug.. 2009, at 13.43, Armindo Silva wrote:
> Shouldn't be owned by www-data so apache can write there?
No. Allowing the apache user to change or delete its website is no
good and allows for much easier hacking/defacing the site(s) on the
box. If the apache user cannot write to /var/ww
Shouldn't be owned by www-data so apache can write there?
On Fri, Aug 14, 2009 at 11:06 PM, James Dinkel wrote:
> 755 owned by root.root
>
>
> On Fri, Aug 14, 2009 at 4:11 PM, Michael S. Mason wrote:
>
>> Hello Community Team:
>>
>> What is the default permissions for /var/www (?)
>>
>> Should t
755 owned by root.root
On Fri, Aug 14, 2009 at 4:11 PM, Michael S. Mason wrote:
> Hello Community Team:
>
> What is the default permissions for /var/www (?)
>
> Should this be set to any of the following:
>
> 775= user can exec, read and write, group can exec read and write, and
> all other user
Hello Community Team:
What is the default permissions for /var/www (?)
Should this be set to any of the following:
775= user can exec, read and write, group can exec read and write, and
all other users can read and execute.
755= same as above, but group can only read and exec.
777= all users
10 matches
Mail list logo
