Hello everyone,
Would llike a small hint for security, is it better to separate the apache owner user from the ftp owned user ? I mean to run apache on a unique user "apache" and administrating my ftp/website files under the ftp server owned by another unique user for example "ftpuser", is it reducing risks if my apache gets hacked for example ? I think it lower the risks to have the attacker owning my website files but I'm not 100% sure yet, any feedbacks on this is appreciated.
Would llike a small hint for security, is it better to separate the apache owner user from the ftp owned user ? I mean to run apache on a unique user "apache" and administrating my ftp/website files under the ftp server owned by another unique user for example "ftpuser", is it reducing risks if my apache gets hacked for example ? I think it lower the risks to have the attacker owning my website files but I'm not 100% sure yet, any feedbacks on this is appreciated.