Hey, so I am trying to figure out the proper way to admin a system.
What should the permissions of /var/www be? Who should the owner be? What group should it be a part of? Right now the user owner and the group are both www-data. Is this a good idea?
At the same time, if I am setting up an svn repository in /svnrepos, what should the permissions be? Who should own it? What group should it be a part of? Right now I can't do a commit without sudo (grrr!) I feel like the permissions should be similar to /var/www, but I can't remember what I did.
Obviously I don't want any big security holes, and I want certain users to be able to modify the contents of /var/www, and to be able to do svn commits.
I have done extensive searching of these forums, but I have found a wide variety of answers ranging anywhere from "Only use sudo to modify the contents of /var/www" to "add your users to the www-data group"
Thanks!
Bookmarks