I can’t count the number of times this has come up, especially recently, and the answers you have been given are correct for your question.
What I don’t understand is why everyone seems to insist on using ftp accounts for this type of functionality. A simple “filemanager” or “upload” script placed in the appropriaate directory, with access controlled either by .htaccess based Apache authentication or the scripts “built-in” login process, seems to me to be the best way to handle stuff like this.
The files retain the same owner as the CGI user (generally, you), and the freely available script’s out there allow great flexibility (allowing you to limit space used, types of files uploaded, etc.).
To me, this seems the simpler, more efficient, and generally preferable way to go. Of course, YMMV.