Safe uploading with Apache/PHP/Debian
Posted on 2004-04-24
I've written a small PHP app that involves allowing users to upload images. I developed it under Windows and am now moving it to the Debian server.
Under windows, Apache by default had permissions to write to the file system. Under Linux www-data doesn't, and with good reason I figure. So, what the correct/safe way to allow users to upload files? Just give www-data write permissions on the certain folders? Or is there a smarter way?