demon_athens Posted June 16, 2007 Share Posted June 16, 2007 Hi there, I need to upload pictures for a photo gallery but in order to work the upload, the folder's permissions must be 777. ( or am I wrong?). chmod 777 as read thousand times is not secure so what can I do? Check if the folder and change the permissions before and after the upload? Is this secure? Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/ Share on other sites More sharing options...
arun4444 Posted June 16, 2007 Share Posted June 16, 2007 Does 766 work Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-275993 Share on other sites More sharing options...
malfist Posted June 16, 2007 Share Posted June 16, 2007 just filter the images by extension and file size. Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-275994 Share on other sites More sharing options...
demon_athens Posted June 17, 2007 Author Share Posted June 17, 2007 the page that makes the uploads is "safe" because is under a password protected folder. When administrator ends his uploads there is still the "images" folder that set to 777 and its not protected. I am just wonderinghow all community bypass in general the 777 mode. Just need your opinion or advice. arun4444 766 doesn't work.I get the same errors like 755 Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-276207 Share on other sites More sharing options...
demon_athens Posted June 18, 2007 Author Share Posted June 18, 2007 nobody? any guru outthere? Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-276909 Share on other sites More sharing options...
effigy Posted June 18, 2007 Share Posted June 18, 2007 What user/group is Apache running as, and what user/group are you? Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-276937 Share on other sites More sharing options...
demon_athens Posted June 18, 2007 Author Share Posted June 18, 2007 when php is executed the owner becomes wwwrun. I am not sure if this is what you asked though. After a lot of searching, seems that "php safe mode" is secures a bit this issue. I want to be the owner and have all access from my scripts, and the end users just read. Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-276982 Share on other sites More sharing options...
effigy Posted June 18, 2007 Share Posted June 18, 2007 If possible, put yourself in the same group as Apache runs; then you can have 744 scripts, 644 non-script files, and 750 directories. Here's one example I found. Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-277023 Share on other sites More sharing options...
demon_athens Posted June 19, 2007 Author Share Posted June 19, 2007 thank you very much effigy Quote Link to comment https://forums.phpfreaks.com/topic/55866-folder-permission-777/#findComment-277623 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.