Security issues with having a pub apache folder in home dir. svn post-commit workarou
 

Hey all. Im trying to setup one of my first deb servers and ive gone through a list of things that people generally thing are secure ways of doing things. im at a point where i have svn post-commits and i want to export automatically to the /var/www dir. Problem is the user that in svn'ing doesnt have permissions on that directory, but i dont want to give it NOPASSWD or something like that because i feel that would break the work ive done to make it secure. is there a security problem with running a pub html folder out of my home directory? Or does anyone have a mroe secure way of allowing my svn'ing user to export to /var/www then chmod www-data a couple of certain directories without using NOPASSWD and just su'ing or something. Thanks all for taking the time to read this.

Ah! i just chowned /var/www to www-data:www-data and added my user to www-data group. That worked out on the post-commit but im still not sure if the www dir needs to be owned by root:root for security reasons or??? XD