installiing joomla

Roger arelem at bigpond.com
Fri Sep 13 23:51:12 UTC 2013 

> <snip>
>> Please set up permission to apache user, probably it will be chmod
>> apache:apache /var/www/http
> You should NOT change ownership of /var/www/http to Apache, never do
> that.  That's a VERY BAD THING!!!!!!  Anyone who advises you to do that
> is not to be trusted (whether it's because they're being malicious, or
> simply that they don't know what they're talking about).  That allows
>
> </snip>
>    
>
After researching and actually doing all this for some 10 years I find:

There is some belief that /var/www/html is sacrosanct.
It is, albeit with a couple of differences, (/var directory) no more so 
than /home/user/some/other/directory
http.conf  DirectoryRoot  makes it viable or not.
It does not matter which directory you use you still have to have user 
ownership and suitable permsissions in some form.
I have, in 10 years never found, having the setup described previously, 
to present danger to my home use development boxes using Fedora or 
Ubuntu systems.
One still must have their local machine and modem locked down but that 
is another discussion.

In deference, there are some points worth mentioning.
Joolma, et al, are GUI based, not text based so access matters. If as 
below one does not change apache ownerships:
- Setting up Joolma, Drupal or the like cannot be done unless one is root.
- One has to be root not sudo root.
- To have to be root, to install these as root, makes all files 
contained therein root ownership and permissions.
- Everything from here in has to be done as root, not  sudo root and the 
GUI systems all have to be used as root
As such, playing in root user while connected to the internet, now that 
really IS dangerous.
- User access to manipulate the systems becomes virtually impossible 
with altering other access methods and I do not recommend that course 
for setting up a sandpit test site. That also is for another discussion.
  I am certain that if I had gross errors in my advice, Rick, Brett, and 
others more expert than I, people for whom I have great respect, would 
have advised differently.

Roger

More information about the users mailing list