* Thus wrote Lowell Allen ([EMAIL PROTECTED]): > My commercial host is set up with the public root directory, "public_html", > owned by user: userid, group: nobody. Directories I create within > public_html are owned by user: userid, group: userid. As a result, PHP does > not have permission to create files or write to files in public_html, but it > does within its subdirectories. > > Is this a common setup? Are there security problems with changing the > ownership of public_html to user: userid, group: userid so PHP can create > files within the root directory? Advice, opinions, and links to relevant > information are requested.
I usually keep my writable directories outside the public_html directory. homedir/public_html/* All read only by webserver. homedir/private_data/* Make these files read/write Curt -- "I used to think I was indecisive, but now I'm not so sure." -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php