chrometweaks.org

Creating a website, homestead or iPage? which is better?

Click Here To View All Answers...


First question I got is Creating a website, homestead or iPage? which is better? Many thanks for any comment. Another quick question... Hi,.

Our server had a mysql update to 4.0.1 and the includes/configure.php file of all the stores running oscommerce which had permissions set to 777 to install and 644 after install are now showing the warning: I can write to your configure.php file which is a potential security risk etc....

I have tried 555 and it takes the message away and 444 is read only for all groups so what would be the correct permissions for this?.

Thanks!..

Comments (58)

Good question... I dunno what is the answer to that question. I'll do some research and get back to you if I bump into an decent answer. You should email the people at iPage as they probably can answer it..

Comment #1

We have added support for suexec on our server which increases security for CGI scripts by making them run as the user who owns them instead of the user "nobody" so do you think this is why the permissions will not work on 644 anymore for the stores?.

It's funny because the admin has no warning messages showing and it is chmod to 644..

The sites themselves are only showing this warning at 644..

Which permission should I set it to, 555 or 444 as these two seem to be the only ones that work?.

Thanks!..

Comment #2

I went ahead and set everything to 444 read only and posted in the wiki docs...

Comment #3

I searched the wiki docs and could not find any information regarding the suexec setup...

Comment #4

Hi,.

The CMOD of 444 on configure.php is an overkill. Please see my post on Jan 27th 2004 in this thread:.

Http://forums.oscomm...showtopic=73797.

For a one line change..

It's been reported as a bug..

Peter..

Comment #5

Hi,.

Our server had a mysql update to 4.0.1 and the includes/configure.php file of all the stores running oscommerce which had permissions set to 777 to install and 644 after install are now showing the warning: I can write to your configure.php file which is a potential security risk etc....

I have tried 555 and it takes the message away and 444 is read only for all groups so what would be the correct permissions for this?.

Thanks!..

Comment #6

646 would be the right permissions if somehow you are not the owner of the file, but then other people could also edit it...

Comment #7


This question was taken from a support group/message board and re-posted here so others can learn from it.