GGets's questions -server

GGets

Asked: 2015-12-05 02:31:41 +0800 CST

Can/should PHP-FPM and Apache be run under the same user/uid and/or group/gid?

I decided to reinstall my box's PHP and Apache today to give FPM a go, never used it before and wanted to do some performance tests as I've heard it is a lot faster. Right after compiling and installing PHP with FPM support, of course, the first thing was to look at the configuration and I found that it is by default set to run under nobody / nobody. The problem is I have quite a few virtual servers set up and their files' access is limited to the apache / apache user and group. So here are a few questions that come to my mind:

Why is PHP-FPM run by default under nobody / nobody ?
Can I change this?
Should I change it?
Is it considered a security risk to run PHP-FPM and Apache under the same user/group? If so, why?
What other risks/considerations should I bare in mind about running under different user and under the same user as Apache?

Note: I am using PHP 5.6.16 and Apache 2.4.16 if it matters.

Can/should PHP-FPM and Apache be run under the same user/uid and/or group/gid?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?