Is it ok to add users to the 'apache' group?

security apache-2.2 groups

In your situation you do not want to do this as your intentions pose a significant security risk.

The Apache user/group should only have read access to the files in the web root. If your apache user has write access then you are open to having your application exploited and since it is running under a user that has write access, the attacker now has write access to your system.

I assume when you say that you need 'access' you mean that you want to write to the files. If you were going to achieve this by making yourself a member of the apache group, that would not meet your goal because (assuming you're running good permissions to begin with) your apache group does not have write access to the web files. You would also have to allow the group to write to the files in order to achieve what you want and then you're open to the type of attack I described in the second paragraph.

You should create a new group (www-admins or something) that has write access to those files and then add yourself to that group instead.

Related

Properly remove Exchange after migrating to Google Apps? Or leave it?
How to generate good serials for DNS zones with Puppet?
Environment variable not being picked up by app when started with Upstart (Ubuntu)
Meaning of Cached Available and Free Memory in Task Manager's Performance "Physical Memory" section?
Should I set diffie helman parameters for nginx ssl
Force Outlook 2007/2010 to use IP Address for Exchange Server instead of host name
Open source DCIM stack?
QEMU-KVM Linux virtualization on the command line
If I change a router's subnet mask to one that includes the old one, will the hosts with the old configuration still work?
Which is better, Split or Monolithic VMware disk in a production enviroment?
Multiples authentication methods for Postgresql
How do I pass arguments from the PXE command line to a kickstart %pre, %post script?