privilege separation, ensuring nginx may access it's own tmp folder and only read /var/www

master
El RIDO 6 years ago
parent 14ea837229
commit f18e51f132

@ -1,5 +1,5 @@
# Run as a unique, less privileged user for security reasons.
user www-data www-data;
user nginx www-data;
# Sets the worker threads to the number of CPU cores available in the system for best performance.
# Should be > the number of CPU cores.

@ -1,5 +1,5 @@
[www]
listen = /run/php-fpm.sock
listen.owner = www-data
listen.owner = nginx
listen.group = www-data
listen.mode = 0660

Loading…
Cancel
Save