Dear All<br><br>I installed nginx and configured it to use /var/www/default-page as its<br>root folder for static web pages. ls -l /var/www returns<br><br>drwxrw----. 2 nginx nginx 4096 Mar 9 11:00 default-page<br><br>I do connect to the HOST where nginx is installed using ssh with<br>
public key encryption: ssh my_user@HOST<br><br>my_user is just a plain vanilla user. I added my_user to group<br>nginx. I used my_user to create web content such as a index.html file.<br><br>ls -l /var/www/default-page returns<br>
<br>-rw-r--r--. my_user my_user 827 Mar 5 21:30 index.html<br><br>Does anyone see any security problems with this setup?<br><br>When I remove execute permission for nginx of default-page (drwxrw----<br>-&gt; drw-rw----) I get an error message (403 Forbidden) when I want to<br>
see index.html using a browser. I do not understand what nginx has to<br>execute in default-page folder. Can anyone explain why nginx uses this<br>execute permission?<br><br>Regards<br><br>Sam<br clear="all"><br>-- <br>Samuel Bächler<br>
Obere Bläsistrasse 1<br>8049 Zürich<br><br>Web: <a href="http://boeser.ch">boeser.ch</a><br>Tel:   +41(0)43 817 46 28<br>Mob: +41(0)79 478 49 42<br>