I have an AWS EC2 linux instance running a PHP app for use by anyone from their browser, and developed by myself as owner.
I have not changed any groups.
The directory tree is:
Code: Select all
/var
/var/www
/var/www/html
/var/www/html/AWS_s
/var/www/html/AWS_s/nm-app
/var/www/html/AWS_s/cr-app
Code: Select all
drwxrwsr-x 10 root www 4096 Dec 25 01:03 /var/www
drwxrwsr-x 5 root www 4096 Feb 26 22:42 /var/www/html
drwxr-xr-x 6 ec2-user www 4096 Feb 25 22:14 /var/www/html/AWS_s
drwxr-xr-x 7 ec2-user www 4096 Feb 24 20:29 /var/www/html/AWS_s/nm-app
drwxr-xr-x 4 ec2-user ec2-user 4096 Apr 9 19:05 /var/www/html/AWS_s/cr-app
Which owner:group is more secure?