This I understand.
But then do other users not need read write permissions.
There is hardly any thing given on this page
http://httpd.apache.org/docs/trunk/misc/security_tips.html#serverrootYou mentioned ServerRoot not be chowned to Apache.
But if not then to what should it be and there is nothing about Document Root to be chowned ?
Who should own the Document Root there are many applications I download from internet in their README pages it says
to chown those directories to apache.
Otherwise it never worked.
What should I do in this situation?
From: Eric Covener <covener@xxxxxxxxx>
To: users@xxxxxxxxxxxxxxxx
Sent: Thu, 29 July, 2010 10:45:53 PM
Subject: Re: [users@httpd] Apache 2.2.15 says You do not have permission to view [this file]
> Oh man an experienced sys admin told me to do it that way.
> Please tell me what is wrong in this and where is this documented on Apache
> docs.
> I want to read.
This is a general principle -- don't grant more access than necessary.
Apache doesn't need to own files to be able to serve (read) them.
---------------------------------------------------------------------
The official User-To-User
support forum of the Apache HTTP Server Project.
See <URL:
http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail:
users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest:
users-digest-unsubscribe@xxxxxxxxxxxxxxxxFor additional commands, e-mail:
users-help@xxxxxxxxxxxxxxxx