i noticed in the Joomla! HowTo
that root needs to chown the Joomla! files to be owned by the www:data group before a customer can use them properly.
This works, technically.
But if you sell a hosting package with PHP & FTP, i guess most customers would expect to be able to upload their applications (cms, weblogs, whatever), without having to call the admin to ask them to chown their files. (and the admin does not want all the calls.)
What would be your ideas on a more pleasant, but still secure configuration for this?