Site file ownership

steven1978

I have a simple question. I have a site and I have been having some permission issues when using imagick to write images to a directory. I have got it working now after changing all my folders and files to be owned by the apache user 'www-data'.

My question is this. Should all my folders and files be owned by the apache user or does this cause security problems or other problems regarding command line scripts etc?

NogDog

Apache should not need to own them, just to have write permission on them. In either case, though, if you are on a shared host, it is possible that another user could use a script launched by the web server to alter that directory's contents. That can be obviated by the open_basedir configuration setting, but that only affects PHP scripts.

steven1978

Thanks very much, that make perfect sense now you've explained it.