Quote:
Originally Posted by MrUmunhum
I have Apache User defined as me in httpd.conf and httpd runs as me.
This is getting very frustrating.
|
The simple way of dealing with write privileges on a one-user system is that you can just take ownership of the files with "chown". Then you can write. No need to change the httpd user in the configuration. In fact that can be a bad idea.
The group membership suggestion is sound if the Apache server cannot both serve a page and write to it. If you are in a group which can write to the directories and the web server is running as you, then the server can write to the files. That violates the idea of privilege separation. Each part should only have the privileges necessary to fulfill its tasks. Ideally, the web server runs as a unique user which can only read the files. That way if someone does find a way in via it, they can't start writing their own web pages or, worse, scripts.
My recommendation would be to set the user in the web server's configuration file back to what it was supposed to be, in regards to httpd user. What problem are you trying to solve by changing it? The other change, that of Directory settings is fine.