mod_userdir 403 error

I have just setup web space for each user on a system using mod_userdir..

I set it up by uncommenting the default setup in the httpd.conf file
that comes with FC2..So effectively the settings are..

<IfModule mod_userdir.c>
UserDir public_html
</IfModule>

<Directory /home/*/public_html>
AllowOverride FileInfo AuthConfig Limit
Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
<Limit GET POST OPTIONS>
Order allow,deny
Allow from all
</Limit>
<LimitExcept GET POST OPTIONS>
Order deny,allow
Deny from all
</LimitExcept>
</Directory>

Initially it didn't work and gave a 403 error which said to me it was
permission related..

The only way I could think of to get around it was to put the Apache
user into each user's group and then make sure the home directory had
770 directory permissions.

The default home directory permission is 700.

Have I done the right thing?
Did I get my config wrong?
Is there any real security problem with the way I have done it?
Is there a better (more secure) way of giving each user their own webspace?

Thanks..

"Me" <Me@here.com> schreef in bericht
news:41900bb9$0$27534$db0fefd9@news.zen.co.uk...
> Initially it didn't work and gave a 403 error which said to me it was
> permission related..
>
> The only way I could think of to get around it was to put the Apache
> user into each user's group and then make sure the home directory had
> 770 directory permissions.
Most common practise is to NOT make apache member of any groups and have
apache run as special user in a special group; name of both will probably
vary per distribution.
>
> The default home directory permission is 700.
As the digits represent the right per user, group members and others,
setting the right hand digit to
1 for files
5 for scripts
7 for folders
should give 'the world' -being all users unkown- access well limited to
their needs.

HansH