Hi guys, I have discovered that my apache service runs without using the suExec for each website created. At the moment I have a little problem with the right permissions of a directory. In my project there is a tmp directory that I use to save temporary files but I don't know which are the right permission for a secure writable folder. Furthermore in the #httpd irc channel suggest me that I have to avoid to set the web directory with the 744 permission because is inadequate (thumbs). I have seen that ISPConfig set the web document root with the 744, is it right? Which are the default directory permissions? thanks
ISPConfig does not set 744 permissions, so you must have set that manually on your server. The web directory is set to 710 in ispconfig. There is no need to change any permissions manually, you should just enable suexec in the website settings. Using php without it is insecure and suexec ensures that php is run under the user of the website and not under the apache user.
