When running under CGI/FastCGI does the Apache process execute as the site's owner, or is it the scripts in the owner's directory which run with the site owner's permission?
I am confused about what permissions are required on the websites files. I want to know whether this list of permissions is enough for these file groups.
If the Apache process executes as the user can't the group and other permissions be set to x00 all the way down.
400 - for download only files such as css files, videos, images etc.
500 - for directories that can be listed and where files can't be created or replaced
500 - For executable files that can't be replaced. (is it possible to give an executable 100, so that it can be executed only if the filename is known, but not listable?)
700 - for directories that can be written to, listed and where files can be created
700 - for executable files that the server be replace.
If the server process executes as the web user, like apache or nobody, but scripts are executed as the web site owner, would that mean files and directorires for download only would require xx5 permissions
Pay $18 for Dreamhost registration with coupon [color=#CC0000][b]WORDBRAHMAN[/b][/color]