Why doesn't chown -R root:www-data work on my Wordpress installation?

Question

Quite some time ago, I was following this tutorial which showed me how to install Wordpress on an NGINX + Ubuntu (LEMP) setup:

https://www.digitalocean.com/community/tutorials/how-to-install-wordpress-with-nginx-on-ubuntu-14-04

I got stuck on this portion for quite some time back then as I used root as the user for this instruction snippet below:

The group that nginx operates under is www-data. For the user portion, enter your user account name. We will demonstrate with an account called demo here:

sudo chown -R demo:www-data /var/www/html/*

To clarify, it didn’t give me any errors or anything, but what I found out was that if I used root:www-data for my file ownership settings, I wouldn’t be able to add / update plugins / edit code on the site. It would always prompt me for FTP / SFTP details, in which it would fail even if i entered the correct credentials due to the permissions being drwxr-xr-x (Owner has write permission).

So i tried this:

sudo chown -R www-data:www-data /var/www/html/*

and it worked – I was able to write / update plugins freely as the Wordpress site admin.

However, I now have a roughly better understanding of how ownership and groups work, and I’m concerned that by doing chown -R www-data:www-data, I opened a security flaw on my own.

Am I doing it right? Why didn’t root:www-data work for being able to update the site in the first place?

Answer 1

sugarhill July 29, 2015

I researched the same problem and I found the solution.
The trick is to add your user “demo” to the group www-data (since www-data is a group)

add user “demo” to group “www-data” (below replace demo with your username)

sudo usermod -a -G www-data demo

set permissions for user group www-data

sudo chgrp -R www-data /var/www/html

followed by

sudo chmod -R g+w /var/www/html

Now you can modify files as “demo” via SFTP and your wordpress installation can modify files without requesting credentials

Reply Report

guillaume4e2f1e August 27, 2015

Hey @sugarhill this is really working perfectly, thank you so much, now i can sftp or rsync with no problem.

Cheers to you good sir
Reply Report
sugarhill August 31, 2015

@guillaume4e2f1e
Thanks for your positive feedback! Good to know that it was useful to you.
P.S.: If you click the heart icon on useful posts you show your appreciation and motivate members to post more useful stuff. Have a good one!
Reply Report
thirumani02 June 1, 2016

@sugarhill Thank you so much, its working like a charm.
Reply Report
davidconnects July 25, 2016

This has been driving me crazy for a few months. Thank you for posting such a simple solution!
Reply Report
neild7abb275168 September 23, 2016

Thanks so much, this worked for me.
Reply Report
jorgemartins November 17, 2016

That’s perfect. Thanks for sharing!
Reply Report
vijayrajesh December 26, 2016

Thank you
Reply Report
janjoe March 16, 2017

I completely stuck on this problem and it took me 2 days until I’ve found your solution. Shoutout to @sugarhill. Thank you for sharing!
Reply Report
zubaerahammed July 27, 2017

Best solution.. adding the user to the www-data group solves all the issues with permissions and FTP.
Reply Report
mscull April 7, 2018

thanks, perfect explanation and solution
Reply Report
free4ever November 2, 2018

Lovely solution.
Reply Report
ehong March 19, 2019

Hello admins! Please add this to your documentation / tutorials. It’s driving people mad!
Reply Report
mdewolf May 6, 2019

What do you mean with your username? you mean root?
Reply Report
sovarup August 30, 2020

Life saver. None of the other solution was working for me. but this did the trick. Thanks heaps!
Reply Report

Answer 2

guillaume4e2f1e August 27, 2015

Hey @sugarhill this is really working perfectly, thank you so much, now i can sftp or rsync with no problem.

Cheers to you good sir
Reply Report
sugarhill August 31, 2015

@guillaume4e2f1e
Thanks for your positive feedback! Good to know that it was useful to you.
P.S.: If you click the heart icon on useful posts you show your appreciation and motivate members to post more useful stuff. Have a good one!
Reply Report
thirumani02 June 1, 2016

@sugarhill Thank you so much, its working like a charm.
Reply Report
davidconnects July 25, 2016

This has been driving me crazy for a few months. Thank you for posting such a simple solution!
Reply Report
neild7abb275168 September 23, 2016

Thanks so much, this worked for me.
Reply Report
jorgemartins November 17, 2016

That’s perfect. Thanks for sharing!
Reply Report
vijayrajesh December 26, 2016

Thank you
Reply Report
janjoe March 16, 2017

I completely stuck on this problem and it took me 2 days until I’ve found your solution. Shoutout to @sugarhill. Thank you for sharing!
Reply Report
zubaerahammed July 27, 2017

Best solution.. adding the user to the www-data group solves all the issues with permissions and FTP.
Reply Report
mscull April 7, 2018

thanks, perfect explanation and solution
Reply Report
free4ever November 2, 2018

Lovely solution.
Reply Report
ehong March 19, 2019

Hello admins! Please add this to your documentation / tutorials. It’s driving people mad!
Reply Report
mdewolf May 6, 2019

What do you mean with your username? you mean root?
Reply Report
sovarup August 30, 2020

Life saver. None of the other solution was working for me. but this did the trick. Thanks heaps!
Reply Report

Answer 3

ryanpq July 29, 2015

Since the nginx process is running as www-data the root:www-data ownership would only work with group write permissions set. There is no major issue with running with your web files owned by www-data:www-data but if you are concerned you could give ownership of wp-content to www-data and leave the rest of the install as root:www-data.

Reply Report

Answer 4

sergiozac05 October 25, 2016

this solved my issue, worked perfect!

Reply Report

Answer 5

joefoe December 29, 2017

Thank you sugarhill! Such an important thing … surprised we had to dig for it

Reply Report

Answer 6

trinad536 April 12, 2018

Thank you so much, Worked like a charm.

Reply Report

Answer 7

skaryan February 27, 2019

This solution worked indeed - Thanks a lot sugarhill
BUT unfortunately, the file permissions changed from 755 to 775… and a warning message is appearing now in the wp-admin interface, stating -
———->>
var/www/html/wp-content is write-able. When finished installing the plugin, change the permissions back to the default: chmod 755 /var/www/html/wp-content. Permissions are currently 775.
———->>
If I change the file permission, then it again shows the same issue. Any suggestion? Thanks for your support.

Reply Report

Related

Question

Why doesn't chown -R root:www-data work on my Wordpress installation?

Related

Leave a comment

Looking for something else?

Sign up for our newsletter

Related

Question

Why doesn't chown -R root:www-data work on my Wordpress installation?

Related

Leave a comment

Related

question

Wordpress wp-login.php and other admin files are getting downloaded instead of opening. How to solve this?

question

Why are snapshots so slow

question

Running a web-based video game on a droplet

question

my site i down please see http://www.cheri3a.com/

Looking for something else?