On 09/17/2013 07:44 AM, Matthew J. Roth issued this missive:
Rick Stevens wrote:
Both trees (the ServerRoot and all of the DocumentRoots) have to be
readable by the user that Apache runs as. Absolutely NO part of the
ServerRoot should be _writable_ by the Apache user. It should only be
writable by administrative personnel (root, people in the "wheel"
group, etc.).
Rick,
Thank you for the clear and informative post. I just have one small
correction to make. Apache reads its configuration files as root
before switching to the unprivileged user and group that it will
answer requests as.
True and clearer. We use both Apache and nginx here and there are some
subtle differences in the way the two handle configuration data at
various times.
----------------------------------------------------------------------
- Rick Stevens, Systems Engineer, AllDigital ricks@xxxxxxxxxxxxxx -
- AIM/Skype: therps2 ICQ: 22643734 Yahoo: origrps2 -
- -
- He who laughs last thinks slowest. -
----------------------------------------------------------------------
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
