+ Post New Thread
Results 1 to 3 of 3
Web Development Thread, File/folder permissions? Where to start? in Coding and Web Development; Hello, I am looking to make my web service as secure as possible whilst allowing for the upload of data. ...
  1. #1

    Join Date
    May 2006
    Location
    West Bromwich
    Posts
    2,192
    Thank Post
    300
    Thanked 215 Times in 185 Posts
    Rep Power
    57

    File/folder permissions? Where to start?

    Hello,

    I am looking to make my web service as secure as possible whilst allowing for the upload of data.

    I have installed Joomla and used 750 as the settings for the web root and applied to enclosed objects. Now i would like to allow the creation of folders and uploading of images. What permissions should the root images folder have?

    I have tried 770 and 757 and both fail with errors (see pic)

    Am i doing all of this wrong?

    I have tried searching for correct permissions for web folders and security for this type of stuff but can't get any definitive answers.

    I have tried to configure it as an FTP folder as well but it requires 777 as the permissions. Surely this results in a security risk for that folder?

    Sorry for such a numpty question but i have never really fully grasped the folder permissions needed for this stuff and what implications it has on the security.

    I have read what chmod does and how it works but not exactly sure on what effects giving 777 on a folder would cause although it isn't a critical file like the config.php
    Attached Images Attached Images
    Last edited by HodgeHi; 6th February 2009 at 12:11 PM. Reason: Forgot Attachment :o

  2. #2
    Batman's Avatar
    Join Date
    Mar 2009
    Location
    Northampton
    Posts
    940
    Thank Post
    115
    Thanked 118 Times in 74 Posts
    Rep Power
    40
    777 is always a bad idea, I'd be tempted to go for 775 because you don't want to give everyone write permissions, but you do want them to be able to read and they need to be able to execute in order to open the directory.

    It sounds like the problem is not permissions, it's just that you need the folder's group owner to be a group that the user also belongs to.

    Might be worth checking php safe mode is off... although I doubt that it's your problem.

    I imagine by now you've gone ahead with 777?
    Last edited by Batman; 28th March 2009 at 07:03 PM.

  3. Thanks to Batman from:

    HodgeHi (28th March 2009)

  4. #3

    Join Date
    May 2006
    Location
    West Bromwich
    Posts
    2,192
    Thank Post
    300
    Thanked 215 Times in 185 Posts
    Rep Power
    57
    I think i did go with 777. I'm not entirely sure as it was a while ago. I set up the user permissions as follows though, local user full access, web user read only and everyone no access. Not sure if i should put them here?? This allows the web users to browse the sites whilst allowing the local user access to edit and change files. I thought giving everyone user no access (since everything seems to work fine without any) should be the safest option.

    Any thoughts on this?

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 5
    Last Post: 1st November 2011, 01:05 PM
  2. Student Folder File permissions
    By CM786 in forum Wireless Networks
    Replies: 4
    Last Post: 27th September 2007, 09:28 AM
  3. Changing folder/file permissions on website
    By SimpleSi in forum Web Development
    Replies: 1
    Last Post: 7th April 2007, 03:55 PM
  4. Folder Permissions
    By wesleyw in forum Windows
    Replies: 6
    Last Post: 9th January 2007, 08:25 PM
  5. Start Menus home folder load balancing.
    By Teth in forum How do you do....it?
    Replies: 6
    Last Post: 1st November 2006, 04:49 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •