I debated asking this in the newbie forum. However, it deals more with security, so here it goes...
Which is the better practice for allowing the web server (user apache, group apache) to write / delete files in a user's directory (user jones, group jones). Lets say, the directory in question is called "cache".
should I do the following
OR... should I add the web sever (user apache, group apache) to the "jones" group via the command:
usermod -a -G jones apache
Also, if I do let apache join the jones group, and there is directory is called "cache" where I want apache and jones to be able to write and delete files, should I set the permissions to that directory to 664 or 755.
They both work. Which is more secure.
Thanks in advance.