Apache 2.0 changed the default DocumentRoot permissions to be very restrictive. While I can’t argue this is a better security paradigm than less restrictive default permissions, in the real world upgrading a server with 300+ domains, it can be a pain to script permissions changes in all of the config files.
<Directory />
AllowOverride None
Order Deny,Allow
Deny from all
</Directory>
AllowOverride None
Order Deny,Allow
Deny from all
</Directory>
Change the default permissions to be less restrictive with this instead:
<Directory />
AllowOverride None
Order Deny,Allow
</Directory>
AllowOverride None
Order Deny,Allow
</Directory>
Popularity: 71%
{ 10 comments }
