This I understand. But then do other users not need read write permissions. There is hardly any thing given on this page http://httpd.apache.org/docs/trunk/misc/security_tips.html#serverroot You mentioned ServerRoot not be chowned to Apache. But if not then to what should it be and there is nothing about Document Root to be chowned ? Who should own the Document Root there are many applications I download from internet in their README pages it says
to chown those directories to apache. Otherwise it never worked. What should I do in this situation? ________________________________ From: Eric Covener <[email protected]> To: [email protected] Sent: Thu, 29 July, 2010 10:45:53 PM Subject: Re: [us...@httpd] Apache 2.2.15 says You do not have permission to view [this file] > Oh man an experienced sys admin told me to do it that way. > Please tell me what is wrong in this and where is this documented on Apache > docs. > I want to read. This is a general principle -- don't grant more access than necessary. Apache doesn't need to own files to be able to serve (read) them. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [email protected] " from the digest: [email protected] For additional commands, e-mail: [email protected]
