Caution: This documentation is for Exponential, from version 3.x to 6.x.
For 5.x documentation covering Platform see Exponential Platform Documentation, for difference between legacy and Platform see 5.x Architecture overview.

Wrong file permissions

Saturday 01 November 2008 9:00:28 pm

meinhard benn

Making files executable and writable by the web server as suggested above is a potential security risk.

Instead of
# chmod -R 770 var/ settings/ design/ autoload/

I suggest to use set rights for files and directories separately, and give less permissions to group:

# find var/ settings/ design/ autoload/ -type d | xargs chmod 750
# find var/ settings/ design/ autoload/ -type f | xargs chmod 640

  • Re: Wrong file permissions

    Wednesday 21 April 2010 6:49:12 pm

    Francesco R.

    So, the definitive secure solution as to file permission is meinhard benn's solution?

    But, anyhow, by giving ownership to the webserver user and his group means anytime a developer needs to access a file he'll need to work as root? ...mmhhh

Anonymous User (01/11/2008 8:00 pm)

Anonymous User (01/11/2008 8:00 pm)

Comments

  • Re: Wrong file permissions

    Wednesday 21 April 2010 4:49:12 pm

    Francesco R.

    So, the definitive secure solution as to file permission is meinhard benn's solution?

    But, anyhow, by giving ownership to the webserver user and his group means anytime a developer needs to access a file he'll need to work as root? ...mmhhh