added on Jul 6, 2007 by
Hi!
I run my Linkex at 777. Is this risky? If so, what is the safest "level" to use? 755?
added on Jul 6, 2007 by
Yes 0777 is somewhat risky, since other users on the same server can modify the files. Of couse they need to know the
path to the files in order to modify them.
The best permissions is to allow only the owner to read and write to the files, but at many hosts the webserver runs as
a seperate user, so that user would also need access to the files, leaving you with the same problems; if the webserver
can read/write to the files, people can just make a script the run from the browser that will modify the files.
The safest thing to do is find a webhost that runs the webserver as the same user as you log on with. When that
webserver is creating files, it's owner is the same as yourself.
You can try ask your host what permissions is the best on your system.
Oh and sidenote the same problem could occur on SQL driven scripts, where your could read the config file for the
username and password for the SQL server, and login through a manager and modify the data.
Safest way to go is on a dedicated server, to which only you have access
- v0id