SitePoint Sponsor

User Tag List

Results 1 to 3 of 3

Hybrid View

  1. #1
    SitePoint Wizard samsm's Avatar
    Join Date
    Nov 2001
    Location
    Atlanta, GA, USA
    Posts
    5,011
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    755 permissions on a folder -> safe?

    I added a file upload script to one of my php pages. The idea is that select users can upload images and the images will be added to select pages which can then be viewed by any person web browsing.

    Anyway, the script (directly from php.net) works fine...as long as folder permissions are set to 755 in the destination folder (/images, lets say).

    My questions are:

    1. Is it safe to set a directory like /images to 755?
    2. If it is not, how should one make the process more secure?

    Thanks for reading!
    Sam


    p.s. Mac OS 10.1.3, a BSD UNIX varient running apache.
    Last edited by samsm; Apr 15, 2002 at 11:10.

  2. #2
    Perl/Mason Guru Flawless_koder's Avatar
    Join Date
    Feb 2002
    Location
    Gatwick, UK
    Posts
    1,206
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    always consider changing the group to allow them access.
    Having r-x for o is never a good thing.

    set g-id normally does the trick for me.
    i'd normal chmod 750 then chmod g+s to be sure that it happens serpately.

    Essentially though, unless your server's really insecure, you should be ok with 755.
    ---=| If you're going to buy a pet - get a Shetland Giraffe |=---

  3. #3
    SitePoint Wizard samsm's Avatar
    Join Date
    Nov 2001
    Location
    Atlanta, GA, USA
    Posts
    5,011
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Thanks... I think I understand.

    However, I only barely understand which means I need to do some more reading.

    I'm glad to hear that 755 isn't a gaping security hole.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •