PDA

View Full Version : [ubuntu] Apache Server file security



TTGRULES
January 10th, 2011, 06:52 PM
Hi, im hosting a website that does database reports, and I have the data stored in my own format. I wanted to allow for direct data uploads. To do that, I have to chown the upload folder to www-data.. is this secure? I don't allow for anyone to upload unless they have an encrypted key that can only be gained by logging in.
Thanks!

rubylaser
January 10th, 2011, 07:40 PM
The www-data user is the user that Apache uses by default. So as long as your permissions are setup properly on your files/folders, you'll be just fine.