apache => ftp files chown/chmod security question

class101

New Member
Hello everyone,

Would llike a small hint for security, is it better to separate the apache owner user from the ftp owned user ? I mean to run apache on a unique user "apache" and administrating my ftp/website files under the ftp server owned by another unique user for example "ftpuser", is it reducing risks if my apache gets hacked for example ? I think it lower the risks to have the attacker owning my website files but I'm not 100% sure yet, any feedbacks on this is appreciated.
 
Top