local wordpress installation, plugin installation and file permissions

permissions chmod wordpress

Solution 1:

It sounds like you've already got it figured out, but I'll let you know how I did it. This set up lets me and apache write to the wordpress directory, and the plugin/theme/upgrade works fine from within Wordpress.

First, I made my user part of the www-data group: sudo usermod -G www-data -a <user>.

Next, I made the entire wordpress directory owned by www-data:www-data: sudo chown -R www-data:www-data wordpress. I also made all the files readable and writable by user and group: find wordpress -type f -exec chmod 664 {} +, find wordpress -type d -exec chmod 775 {} +.

Finally, I set the guid bit so that new files would also be group-owned by www-data: chmod -R g+s wordpress.

Now, this isn't the most secure setup. Any vulnerabilities in Wordpress could be used to write to files within your wordpress installation. But I, personally, have never had any problems. And when I tried to make it less restrictive, updates and theme/plugin installation from within Wordpress Admin usually broke. I never quite found the right sweet spot between security and usability.

Related

apt-get upgrade stuck on postgresql dependency
How to run ctags?
Notes missing after upgrade to iOS 10
What security vulnerabilities does macOS Sierra fix?
What takes place during an iPhone hard reset?
OS X internet recovery older version problem
How to use an old MacBook Pro as a display?
Is there a common reason for a Macbook battery to disconnect from the logic board?
iOS 10 no longer starts lock screen music player when headphones inserted
MBP (late 2016) - 5.1 audio over USB-C?
OSX Sierra hangs when accessing Printers
is data stored in iphone encrypted by default?