Apache's default is safe enough, and so are the root:wheel defaults. The only reason to deviate from that standard is when you're hosting a bunch of virtual hosts that need to be maintained by different people. In that case you'll want DocumentRoots in (for example) users' homedirs (like /home/user/www or /home/user/public_html) with the permissions set to these users so they can maintain their sites.
|