Welcome to Geeklog, Anonymous Sunday, December 01 2024 @ 12:01 pm EST

Geeklog Forums

to CHMOD or not to CHMOD.


MVK

Anonymous
I have a geeklog site which i host myself on a linux (gentoo) apache webserver box.

Throughout the initial Geeklog installation process and other related geeklog installs (i.e. plugins etc) I remember using CHMOD to give access (read and write) to anyone/everyone (CHMOD 777 i think??). This was kinda due to my lazyness and lack of patience in just wanting to get it working asap.

I am now concerned that this means sections of my site are very much open to anyone and if i put the site live then i am practically begging to be hacked.

Is there any advice anyone can give?

Is there any such tool which will check all permissions to help give me a head start in securing my website/geeklog site and it's files?

Thanks in advance to anyone who can help.


MVK
 Quote

Status: offline

knuff

Forum User
Full Member
Registered: 12/17/04
Posts: 340
Location:Sweden
why not start on the defensive mode Mr. Green

presuming your webserver user id is part of yoursite group.
presuming youruser is not root

chown -R youruser:yoursite /path/to/public_html
chmod -R 664 /path/to/public_html

presuming httpd is your webserver daemon user

chown -R httpd logs/
chown -R httpd data/
chown -R httpd public_html/backend/
chown -R httpd public_html/images/articles
chown -R httpd public_html/images/userphotos

chmod -R 775 logs/
chmod -R 775 data/
chmod -R 775 public_html/backend/
chmod -R 775 public_html/images/articles
chmod -R 775 public_html/images/userphotos

Should be OK I guess for a basic GL installation, offcourse if any plugins like the filemanagement needs additional rights you should add them.

But I guess this is the fastest to a simple lockdown of your site.

Best Regards,
Boris

Vanrillaer.com - our Family Portal
 Quote

MVK

Anonymous
thank you for the speedy reply. i feel that little bit more comfortable now.

MVK
 Quote

All times are EST. The time is now 12:01 pm.

  • Normal Topic
  • Sticky Topic
  • Locked Topic
  • New Post
  • Sticky Topic W/ New Post
  • Locked Topic W/ New Post
  •  View Anonymous Posts
  •  Able to post
  •  Filtered HTML Allowed
  •  Censored Content