OK, you might want to call me paranoid after writing this.
For files that contain database connectivity information, I’d like to set permissions to 600, read/write, for user only. If I do this, then the server can’t read the file, and I’m fine with that. What I would then like to do is grant the user dhapache the ability to read the file whithout changing the owner. Typically I would modify the access control list with setfacl, but DreamHost doesn’t have the ACL package installed.
Is there another way to do this?