{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 别忘想泡老子 的问题《Permissions for /var/www/html [closed]》','https://www.manongdao.com/q-146507.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I have a virtual CentOS server with GoDaddy, and I'm having trouble setting up the permissions for /var/www/html.
Users are not allowed to log in as root, or even add themselves to the root group, so here's the corner I've painted myself into:
I changed its owner using the following command (I used the user:group that was in
httpd.conf):chown -R apache:apache /var/www/htmlI added my own user to the
apachegroup:usermod -a -G apache myuserI changed the permissions:
chmod 777 /var/www/html -R
This is the only way to give my SFTP account the ability to create, change, and delete files in /var/www/html. 777! (The SFTP account uses the same credentials as the ssh account, which means for all intents and purposes they're the same, right?)
I'm obviously new to Linux server admin, but this seems ridiculously insecure. Is there a better way to do all this?
Note The website I'm planning on putting up here will allow file uploads, cron jobs, etc., so I'm guessing that will complicate the necessary permissions as well. Is that correct?
Update Using 775 does not appear to work; I can upload/overwrite files, but when I just try to delete them, FileZilla gives me this error:
rm /var/www/html/index.php: permission denied
I have no idea why, but changing back to 777 "fixes" this.
I have just been in a similar position with regards to setting the 777 permissions on the apache website hosting directory. After a little bit of tinkering it seems that changing the group ownership of the folder to the "apache" group allowed access to the folder based on the user group.
1) make sure that the group ownership of the folder is set to the group apache used / generates for use. (check /etc/groups, mine was www-data on Ubuntu)
2) set the folder permissions to 774 to stop "everyone" from having any change access, but allowing the owner and group permissions required.
3) add your user account to the group that has permission on the folder (mine was www-data).
You just need
775for/var/www/htmlas long as you are logging in as myuser. The7octal in the middle (which is for "group" acl) ensures that the group has permission to read/write/execute. As long as you belong to the group that owns the files, "myuser" should be able to write to them. You may need to give group permissions to all the files in the docuemnt root, though:log in as root user:
sudo su
password:
then go and do what you want to do in var/www