I just purchased my first hosting package in 10 years. Things have changed quite a bit and I'm unsure about some of the permissions settings. My new account is with Host Gator.
I could really use some help.
I'm going to use WordPress for the first time. I'd like to harden down my Linux server on Host Gator as much as possible. I'd also like to harden the WordPress permissions as much as possible.
I've read a fair amount about and have a little experience in setting read, write, and execute permissions plus some other security experience. My main concerns are to strike the balance between hardening down enough without making it so WordPress can't access whatever it needs to access.
I also have "Hot Linking" to consider. Not sure if that will make it difficult for WordPress to do it's thing.
I'm moving away from IPowerWeb after they "upgraded" to the new VDeck application. This thing is horrible. I would like to know of a host that provides the BEST web based file manager/editor.
I do a lot of PHP, HTML, SQL with complex directory structures.
not a valid file descriptor at /usr/local/cpanel/Cpanel/DiskUsage.pm line 469 Carp::croak('not a valid file descriptor') called at /usr/lib/perl5/site_perl/5.6.2/i686-linux/Storable.pm line 74 Storable::logcroak('not a valid file descriptor') called at /usr/lib/perl5/site_perl/5.6.2/i686-linux/Storable.pm line 251 Storable::_store_fd('CODE(0x90a7588)', 'HASH(0x9515530)', 'GLOB(0x946a604)') called at /usr/lib/perl5/site_perl/5.6.2/i686-linux/Storable.pm line 240 Storable::nstore_fd('HASH(0x9515530)', 'GLOB(0x946a604)') called at /usr/local/cpanel/Cpanel/DiskUsage.pm line 469 Cpanel:iskUsage::cache_filemap('HASH(0x9515530)') called at /usr/local/cpanel/Cpanel/DiskUsage.pm line 236 Cpanel:iskUsage:iskUsage_showmanager('', '', '', '', '', '', '', '', ...) called at (eval 72) line 1 eval 'Cpanel:iskUsage:iskUsage_showmanager(@RARGS);' called at cpanel.pl line 1295 main::exectag('<cpanel DiskUsage="showmanager($FORM{'level'},$FORM{'clear'}...') called at cpanel.pl line 4309 main::dotag(undef) called at cpanel.pl line 4198 main::cpanel_parseblock('SCALAR(0x8ea4400)') called at cpanel.pl line 4152
main::cpanel_parse('GLOB(0x90a71a4)') called at cpanel.pl line 969
I decided to 'tweak' a few httpd.conf settings yesterday and did so in Virtuozzo file manager.
I saved the httpd.conf file, then opened it again to check something else out.
For some reason only the last 20 or 30 lines of the original httpd.conf file were showing in the file. I wasn't sure what had happened, so I tried to copy and paste the contents of the httpd.conf backup file into the httpd.conf file however, every time I saved the same thing happened, i.e., only the last 20-39 lines appeared in the saved file.
I contacted the host and was told, among other things that:
Quote:
Virtuozzo is not completely integrated with cpanel, so it is not advisable to edit files via power panel. I would recommend you to do it via SSH.
I've edited files through the Virtuozzo file manager before without any problem.
I'm just wondering whether anyone has ever had a similar issue or can explain in a bit more detail why this might have happened, as I don't quite get how the Virtuozzo integration with cpanel would cause this.
I need to run my PHP application locally on my XP Pro machine with IIS. Part of my application requires creating files, how do I set write permissions on folders like you can with windows server?
my question is relating to a "DJ Panel" that I am making. I am looking into various file permissions and was wondering if all PHP files that are part of the DJ Panel have file permissions of 0666 will that pose any kind of security threat (make life easier for hackers) or do you see any downside to doing this?
My scrips are writing uploaded photos to the server's hard disk drive. In Linux, I've set up right permissions to the folder: allow write files, php user as the owner of the folder.
After I've transferred everything to Windows Server 2008 server, I've removed "read only" atribute from folders and files, but PHP scripts still can't write new files or change old files.
I wonder what should I do to fix it? Set PHP user as the owner (as in Linux)? If yes, how can I do it?
I'm on a shared FreeBSD server, running Apache with Drupal, and vBulletin.
I had to create a local php.ini file in my public_html folder for Drupal, and another in my forum folder for vBulletin. Now my question is, what should I set the permissions of these files to? Also, what should I set .htaccess permissions to as well?
I'd like to keep them invisible to the public. But, I don't want any problems with Drupal, or vBulletin ether.
I'm used to using Linux and I know how permissions work on a desktop. I just don't know what they do when used on a server. I'm guessing 640, but I'd like to make sure before I change anything.
I have setup an ftp user which can upload files to /home/ftp/upload and obviously it assigns the ftp user as the owner when it uploads. Now, I want PHP to be able to rename those files, but getting a permission denied, presumably because apache aint the owner or doesnt have permission to do that, so how do I grant it the right permission(s)?
I am planning to use CGI for my web installations and there appears to be a whole lot of conflicting info about setting file permissions in the user's folder.
What are the permissions actually required for reading and writing into the web users directory?
A lot of them say 755, but that doesn't make sense as it gives any user read and write permissions to the whole web directory tree.
Other than the initial index .php, .cgi or some other files that need to be ready by the webserver process shouldn't every other file be 700 or 600 as every subsequent file access is done under the control of the cgi program?
Unless a file is to be served directly by the web server process and is not in a ScriptAlias directory or is not marked as a CGI shouldn't the permissions on that file be 600 or 700?
I'd also like to know if there are some guides as to how the CGI security issues operate.
Maybe someone can set me straight on this. I have always been under the impression, that under normal circumstances, permissions should usually be as follows:
I am doing some work on a server and when I create a new folder (using WinSCP) it defaults the folder permissions to 775 and file permissions to 664. Besides causing possible problems with the applications I'm installing, isn't this a bit of a security risk?
Also, if I upload a tar and untar on the server it sets the same 775/664 permissions.
Using Plesk 12 with an automated install of Wordpress. Created a site locally using wamp and after some database related issues finally managed to upload the content using a plug in and the content looks fine and largely(!) works.The directory structure is root/httpdocs/wordpress (and I can't change that as a webapp is using it - presumably the Wordpress install).
Following various articles on the net I've deleted the Wordpress skeleton files and index.html file however I'm not entirely sure whether the index.php file should directly be under root or in the httpdocs folder?? - as wherever I put index.php and edit the path accordingly it doesn't display the site.Adding the wordpress folder into the site address ie mysite.com/wordpress displays the content.
Also one article indicated that as I'm using permalinks I need to also copy the .htaccess file but it doesn't display in the Plesk file manager. I know it's a hidden file but I can't see it either when forcing FileZilla to show hidden files.[edit - as it's a windows server, further reading indicates it should be web.config rather than .htaccess (?) but the same comment applies... imh]
How can i reset the owner state of the files in file manager. right now some files have the ROOT as owner. I know with DirectAdmin there is a Reset owner feature. But this is cant find in Plesk.
I lately decide to change my server provided and I decided to go for pre-installed Plesk12 service , plesk installed with os installation and in the beginning was looking ok , till I faced two problems .
The first problem I found is on Backup manager , I set a daily backup with maximum of 5 but every day I receive the error :The backup backup_website.com_info_1505272137.xml and backup_website.com_info_1505262137.xml was not created , I check the current backup task and the two task shows fails.(picture attached)
The second problem I found It may be related , is concerning the File permission , the user root and on group root are not able to change any file permission but the user pinco on group root is able to change it as well as the user Pinco on group psacln/psaserv , I updated the plesk12 to latest release to see if maybe was some changes but unfortunately nothing
Not migration for domains and was fresh install for os and plesk12
a way to preserve folder/file permissions in a windows environment. We are copying files from one drive to another on one of our servers. It's crucial to preserve the permissions - but i've done some research and can't find any way to get this done...
Anybody familiar with any methods on how to approach this? We're running windows 2003 server.
I recently opened a shared hosting account with a new host.
Can someone advise on file/folder permissions I can set which will keep my shared host neighbors out?
While accessing my account via FTP I noticed I could freely view and download files from other users folders - their PHP, HTML, images, you name it!
I would like to be more private with my files which include PHP scripts, images, etc.
I already contacted the help desk with my host and the tech said shared access between accounts is normal (even FTP) and if I restricted permissions then my PHP wouldn't work for Internet users.
I'm not buying it. I should be able to set the permissions such that Internet users can execute the PHP and view images, without my account neighbors using FTP to download my files.
