Changed to: Best practices for apache and user access?
I have a webserver. It has muliple developers needing access to the htdocs folder, like creating new subfolders, adding files, modding files, etc.
So to start with, my apache server is ran as apache:apache. Everything apache was owned by .... apache:apache
When a user1 uploads something new, it's owned by him. But if user2 wants to add to it, or mod that, he won't have access.
My work around has been to have things owned as 1 particular user, say like apache-dev, and all users would upload and make changes, and saves as that user, so I don't need to worry about other users being stopped.
I think there should be a better way, but I don't want to just run around testing it. My thought is this.
Make the htdocs folder owned by some group, like apache-dev. Make everyones default group - apache-dev.
Would this allow access to all my developers? Is this the best route to take as far as security from the outside?
Thanks for any suggestions,
Last edited by neocontrol; 01-25-2008 at 03:26 PM.
Reason: poorly asked questions
|