I could not agree more, but as write in the beginning.
This installation is not made for public facing servers, there is no build in security in my setup.
Everything is run as root in this example below, including daemons and web servers…
[edit]
“I’m changing the download and extract as an ordinary user.”
[/edit]
Only for trying things out on a fresh vm, and nothing more.
When 10 goes out of beta, and things are going into production this is not a good way to do things.