A |
artichoke |
Roundcube should be in /home/roundcube.
Roundcube should be made its own user, complete with its own username 'roundcube' and its own /home/roundcube directory. Just like any other end user. Not /var/www/html/anything.
Different people use different security strategies, but the goal is always to lock the user into his own directory hierarchy. If the same is done for Roundcube, then we have slightly better compartmentalization.
Also, having Roundcube be an end-user makes easy backups and restores of Roundcube possible. Should the sysadmin manually want to adjust Roundcube settings, a simple backup of the 'roundcube' user can later be used to restore it to the way it was, if needed.
Activity Newest / Oldest
smtalk
It runs under "webapps' user, and is limited to /var/www/html. RoundCube data backups are included into DA backups.
artichoke
By user I meant DirectAdmin user, not Linux user.