I’ve been running NC since version 9 (now 12.0.3) and from old Owncloud days I’m still using two scripts, which set the permissions for the update process and for a hardened production process. Before every update I’ve checked if my scripts (only slightly modified though because of paths) were still equal to the ones in the Nextcloud documentation. But now these scripts were erased from the documentation for every NC version. (Link before was: https://docs.nextcloud.com/server/11/admin_manual/maintenance/update.html#set-updating-permissions-label)
On another topic I’ve read:
So, I think it is recommended now not to use such hardened permissions, is that right?
Maybe because on a proper configured root server these hardening doesn’t gain much towards security, am I right?
@JasonBayton Is there any location where one can see the proper/required file permissions beneath the owner “www-data, …” -> read, write, execute?