I've got a handful of users on my Debian server that are FTP only, they are chrooted to their home directly (I use vsftpd) and have their login shell set to /bin/false. Their home directory is used by Apache to host web sites.
What permissions should I set to these users home directories? I'm guessing 700.
What about the umask setting for vsftpd?
In need of some "best practice" guidance.