|
Apache needs to be able to read the files. In addition, your users need to be able to write files in their directories.
In the simple case, your directories can be owned by the user/group that the files are coming from, and they and the files within can be readable by all.
It is generally a bad idea for Apache to be able to write files, as this can allow security exploits through the web server. However, if your web application has some sort of built-in cache or allows file uploads, those specific directories would need to be writable by Apache.
Things get more complex if you wish to prevent users from seeing each others' files.
|