anto60

Thanks, ciao.
Antonino

ok, thanks for your answer.
Bye.

Bye

Thanks for your answer.
Bye.

Thanks, solved.
Astra is a good theme.

Ok, many thanks.

Excuse me but this recommendation do not seem to me exact. If you consult the “Hardening WordPress” guide you can see this : “/wp-content/:
User-supplied content: intended to be writable by your user account and the web server process. ”
Then “wp-content” must be 770 and owned by user account and writable by Apache system user (this is valid for “wp-content” because there are some limitations for /themes and /plugins).

And then, if i have a shared installation, i can not create my web root with 775 permission because other users can see my files.

I finished my tests, i configured my web root with these settings: rwxrws—, the proprietary is the user and the group is (apache user, user) where the “user” is user that manage wordpress.

Thanks. Goodbye.

Hi Steve. I am tring some configurations to test my environment, i will update you.

But then you create a group (user Apache and you) for every user that get a web root?

Thanks.

But my user, proprietary of directory where i installed wordpress, must be too in the group of Apache user?

Thanks Steve.

But according your opinion, is it better to follow Debian’s default webroot policy or FHS? Should I install my web apps in /srv or /var/www?