Can't CHMOD 777 Files, But I Can CHMOD 777 Folders
On one of my servers i can't CHMOD 777 Files, but i can CHMOD 777 Folders.
Files are chmod 777 but on scripts installation... It's Said Please Chmod Example.php to 777
Centos 5
PHP 5
Apache 2.2.3
View Complete Thread with Replies
Sponsored Links:
Related Forum Messages:
How Do You Avoid Using Chmod 777
I know you're not supposed to use 777 but it seems some scripts just simply won't work without it, what steps needs to be taken to avoid using 777? as far as i understand we're only supposed to use 775 for folders and 644 for files correct?
View Replies!
View Related
Chmod 777 Vs 755
I've just moved from a reseller account with ResellerZoom, so a VPS with SolarVPS. When I was with RZ all my scripts could write to folder with the 755 permissions. On the vps I have to alter the folder I want the script to write to to be 777. Which the is best and most secure? I think I understand that if a folder is 777 then anyone on the server can write to that folder. So I assume some sort of thing that stops users being able to access folders outside of their own folders is needed? is that right?
View Replies!
View Related
CHMOD For Files
I just moved my folder_A from computer A to computer B, what is the command to change the permission of owner, access, group for every files in that folder_A at 1 time? in the folder_A has hundred of files. Let's say , i want to change owner = laptop, access = read and write, group = user, access = read and write , what is the specific command to do that for all the files in folder_A at 1 time?
View Replies!
View Related
How NOT To Require CHMOD 755 Permissions To Create, Write And Delete Files On Linux
On my previous server and on some other hosts, I was able to write to files (for example with PHP) without having to chmod the files first. Now I cannot, and files are required to be chmoded properly so I can write to them. I cannot even touch() a file with PHP. Is there any way to have this permissions removed? I don't want to chmod the all thing, all I want is to change the configurations so I can fwrite() or file_put_contents() normally. I's a dedicated un-managed server, so basically any advanced configurations can be done.
View Replies!
View Related
777 Permissions For Www
Let me start off with saying: I haven't had any suspicious activity, nor do I think I was compromised. I logged in as root, and was simply clicking around my dedicated server and came across a few folders with permissions at 777. ALL are above /public_html Irregardless, is this safe? I recall reading a bunch of topics on here, that /tmp needs to be hardened. Isn't this also above /public_html? For one example: /var/tmp is chmod to 077 ..inside is a bunch of sess_ files Is this folder open to hacking?
View Replies!
View Related
What Is Bad If I Leave 777
Website script requires to put permission from 777 to 644 after all job will be done. but as i need permanently changes in files, i wand just leave it 777. Can i leave 777 ? and please if i do this is bad with 777 and how it damage website?
View Replies!
View Related
Avoiding The Dreaded 777
Just wondering what options I have so that I can finally be rid of the 777 folders and lower them to 755? Problem, I run several scripts that I assumed require 777 permissions, such as forums and gallery scripts. How else would images/attachments be uploaded to the server? I`m running a linux vps, however I`m relatively new to server security and admin stuff. Reason I brought this up, quite a few of my 777 folders on various scripts had some unwelcome php and htaccess files added over the last few weeks. No doubt malicious! I only just discovered them this evening. I keep hearing about PHP Suexec and other features, but I`m concerned using these migh kill the attachment features of a forum for example. What good is a gallery if we cannot upload anything. I know there are ways around this, but I need something in laymans terms.
View Replies!
View Related
User Nobody And 777 Directories
I have a couple of scripts on my server that require directories to be chmoded to 777. This has let hackers upload code that is being used in phishing schemes to my server. How can I prevent that? can I disable user nobody?
View Replies!
View Related
777 Permissions/osCommerce - Dedicated Box
I'm running a site on a dedicated box, with no other user accounts. In order to get some of the features for my osCommerce site to work, I have to have a few files/directories set to 777 permissions. It's my understanding that anyone who gains user access to the server would then be able to write/edit those files and directories, yes? It does not, however, mean that average joe web surfer has rights on them, correct? So, assuming I keep up to date on security patches, lock the server down as well as possible, and keep my account as the only one on the server, is there any major security issue with leaving those 777 permissions? I'd hate to close them off, as it would kill some REALLY helpful features, but security is important.
View Replies!
View Related
Chmod
I have a server running php 5.2.4 with CGI as Server API and suexec, but I cant create dirs in php with chmod 755. When I use mkdir("/home/user/public_html/$dirname", 0755); it creates the dir with chmod 744. Why? I can change later this chmod to 755 in php with the chmod function. But why my server doesnt allow the directory to be created as 755? Where can I configure it?
View Replies!
View Related
Chmod Using Shell
I was wondering if it were possible to chmod a directory that is set to a low number to 777 using a shell or command and if so can anyone point me in the right direction as to how to go about doing so ??? I am trying to learn a little and i pefer using my browser to edit files rather then a ftp client.
View Replies!
View Related
How To CHMOD? Sever Security Best Practices
I have my web server hacked several times and I am beating my head against the wall trying to find the problem(s). Way back when my sites have been defaced and CHMODing my *.html files to 744 seemed to have done the trick Now someone has put a phishing site somehow, which by the way I'm not able to remove still, I can't help but to think that I may have more CHMODing to do, I have recursevly set my site to 755, shoud this do the trick? I know I need to chmod .htaccess and alike files to 644, but what about...imagesCGI/PHP?cssetc? What other steps can I take to secure this thing? it's a shared host, limited access, but I do have SHELL.
View Replies!
View Related
Auto CHMOD Script Running In The Background
I am attempting to setup a script which will automatically append the proper file permissions [posix & acl's] to any new files on certain folders that I specify. Someone Recommended find /Users/Kevin/Desktop/TRANSFER -type f -exec chmod 777 {} ; This only seems to run once and when new files put in I have to have the script run every so often as a cronjob, I really just want to have a script to change the permissions of files going into a folder.
View Replies!
View Related
Chmod Choices With Php Writing To A File
My account has been hacked with every index.php page defaced. I've cleaned up and my shared wehost is pointing at me saying there shouldn't be any 777 permissions for any files in there. I used 777 to allow php to add records in a txt file and in an xml file. Is there a better / more secure chmod code I can use? Those are the only two instances where I need php to write to a file and those files shouldn't be served to anyone, I do not want anyone to be able to access them. How can I secure them while letting php write in them?
View Replies!
View Related
Chmod All Occurances Of A File System Wide
How do I sweep my entire server and chmod a particular filename located in the cgi-bin to either 0, 755, etc? For example, to disable a particular perl script running on my system on over 100 accounts in the /cgi-bin/file.cgi I want to chmod the file on every account that it comes up on that /cgi-bin/file.cgi needs to be chmod'd to 0. Anyone know how to do this thru ssh or another method?
View Replies!
View Related
Cannot Perform 'chmod' On FTP Client Software Interface
I got a VPS with Linode and I have installed CentOS 5.2 32-bit, Apache, MySQL and ProFTPd. The server itself runs very OK, however, I have issues with running 'chmod' on the user interface with either FileZilla or CuteFTP pro. Whenever I try to chmod 777 on a directory, I got this error on the FTP client interface: Quote: Command:SITE CHMOD 777 includes Response:550 CHMOD 777 includes: No such file or directory Why no such file or directory? weird. It's just on the server though. The FTP user is the owner/group of the directory I try to chmod to. But I am able to run chmod on Putty.
View Replies!
View Related
PHP: Uploading As Apache User, And Chmod 600
I've recently moved to a new server in which I don't have root, so bare with me. For some reason when I upload a file with 'move_uploaded_file($tmpName,$new_filename)', it seems to work fine - but when I check it, try to download it (http or ftp), or change the permission - I can't, because its set to 600 for some odd reason, and owned by the user Apache is setup on.
View Replies!
View Related
/tmp Folder 777 ... Use As Sessions Folder... Secure
On my VPS I would like to set the /tmp folder to 777 and point to it with session.save_path. The VPS will host a number of sites, but I will have sole control of them. ie. the account holders will not have access to cpanel. If it makes any difference, the server is running phpSUexec. What are the risks involved with this?
View Replies!
View Related
Hosting Allowing Chmod? New To Hosting
I recently got webhosting with godaddy which I have now decided was a bad choice. Its "user friendly" model makes it harder. My main problem at the moment is loading forum php script and such I have to have my permission changed which i know how to do but it wont let me through ftp or godaddy's filemanager (though it says you can). *Does someone know how to do this on godaddy **or what hosting do you recommend for: ....
View Replies!
View Related
Removing Large Files Or Folders CentOS
Something weird happening here. I have tried every string possible... There are a number of folders I want to remove off my server, tried the good old and simple... rm -r /folder/ And then went and ended up with a string as long as my screen. No matter what I do, as it goes recursive in to the directory it asks me if I want to remove each file individually. No matter what string or action I take it insists on asking me as it goes to delete each file. Could this be a configuration option in CentOS?
View Replies!
View Related
Offsite Backups (via Rsync) - What Files/folders To Backup
I'm currently using (amongst other backup systems) rsync to an offsite space (am using BQBackup at the moment) I'm just wondering - apart from backing up all of /home/, /var/lib/mysql/ and the important config files (httpd.conf, php.conf, etc etc) is there anything else that *needs* to be backed up? Obviously in a worst case scenario, a new machine would be deployed with a fresh OS install (and a fresh WHM/cPanel install) so I wouldn't worry about backing up OS files or cPanel core files, although I'm wondering if there's anything apart from the /home/ directory and the MySQL databases which would be lost (and so need backing up) in the event of a crash?
View Replies!
View Related
Simple Script To Find Suspected Files And Folders
Try this useful script to find all 777 permission files and folders in /home directory also it can find all names of suspected folders and files you want and then you can take the required action to install this follow the steps login as root Code: cd /root Code: pico checkpandnscript.sh Enter this code and in the 5th line from the end change email@email.com to your email Code: # This file will help you to find suspected folders and files in /home directory # Coded and desgined by Alrutani Web Hosting www.alrutani.com , for more informations please contact us. #!/bin/sh echo " " > /root/perdfmbc echo "################# Folders with 777 permission #################" >> /root/perdfmbc echo " " >> /root/perdfmbc find /home -type d -perm 777 |egrep -v "./cpapachebuild|./.cpan|./src" >> /root/perdfmbc echo " " >> /root/perdfmbc echo "################## Files with 777 permission ##################" >> /root/perdfmbc echo " " >> /root/perdfmbc find /home -type f -perm 777 >> /root/perdfmbc echo " " >> /root/perdfmbc echo "############### Folders & files must be checked ###############" >> /root/perdfmbc echo " " >> /root/perdfmbc find /home -name forum >> /root/perdfmbc find /home -name upload >> /root/perdfmbc find /home -name 4images >> /root/perdfmbc find /home -name gallery >> /root/perdfmbc find /home -name uploader >> /root/perdfmbc find /home -name up >> /root/perdfmbc find /home -name r57shell >> /root/perdfmbc find /home -name r57shell.php >> /root/perdfmbc find /home -name r57.php >> /root/perdfmbc find /home -name c99shell >> /root/perdfmbc find /home -name c99shell.php >> /root/perdfmbc find /home -name c99.php >> /root/perdfmbc find /home -name shell.php >> /root/perdfmbc echo " " >> /root/perdfmbc echo "###############################################################" >> /root/perdfmbc echo "Developed by Alrutani Web Hosting http://www.alrutani.com" >> /root/perdfmbc echo "For more informations please contact us." >> /root/perdfmbc echo " " >> /root/perdfmbc cat /root/perdfmbc | mail -s "Suspected files & folders in your server" email@email.com cd /root rm -rf perdfmbc # This file will help you to find suspected folders and files in /home directory # Coded and desgined by Alrutani Web Hosting www.alrutani.com , for more informations please contact us. To add more files and folders that you want the system to list fine Code: find /home -name upload >> /root/perdfmbc after it add Code: find /home -name xxxxxx >> /root/perdfmbc where xxxxx is the name of the file or the folder you want Save file Ctrl X select yes then click enter Code: chmod 755 checkpandnscript.sh To make the script works daily Code: crontab -e At the end enter Code: * 3 * * * sh /root/checkpandnscript.sh save and exit done !! now to test the script Code: cd /root Code: sh checkpandnscript.sh you will receive email from the server
View Replies!
View Related
Disk Quota Issue - Locating The Folders With The Highest Number Of Files
we've been having issues with reaching or exceeding our disk quotas. I've checked carefully, and while I've cleared our mail queue's, I don't think that's the issue. So what I'm really looking for is a way to figure out why we have so many files (our quota is 220000, and I'm pretty confident that we aren't intentionally doing anything to create so many files). There's lots of information on finding the folders with the largest file sizes, but locating the folders with the greatest number of files isn't quite so simple--or at least, it doesn't seem very clear to me. Does anyone know a way via the command line to figure out this information, short of going through every single folder and figuring out how many files are in the specific folder?
View Replies!
View Related
C99Shell Folders?
I found these folders in the root /usr/bin/c99 /usr/include/boost/numeric/interval/detail/c99_rounding_control.hpp /usr/include/boost/numeric/interval/detail/c99sub_rounding_control.hpp what are these ? is it normal folders ? or somebody hacked our server? what shall I do?
View Replies!
View Related
Nobody Folders And Delete
when people run a forum and the template and forumdate folders may created some files with nobody permission, the user could not delete them by the user themself, and need admin login as root with ssh to delete those, and let the files permission can run as the user instead of nobody. the server is centos with cpanel and suexec.
View Replies!
View Related
.htaccess And Folders
In the public_html directory, I have php_value user_agent "Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.8.1) Gecko/20061010 Firefox/2.0" <IfModule mod_security.c> SecFilterScanPost </IfModule> <IfModule mod_rewrite.c> RewriteEngine On RewriteBase / Errordocument 404 /404.html RewriteCond %{REQUEST_FILENAME} !.(jpg|jpeg|gif|png|css|js)$ RewriteCond %{REQUEST_FILENAME} !-f RewriteRule .* index.php [L] </IfModule> Then I created a new directory named caller There is an exact same .htaccess in public_html/caller However, the .htaccess in the public_html directory rewrites all request to index.php .htaccess in public_html/caller rewrites all request to /caller/index.htm The thing is when I access [url] whatever the one that's called is /public_html/index.php How can I arrange so that the one called is /caller/index.htm?
View Replies!
View Related
IIS 5.1 - Browsing Folders
Well I finally got around to getting my IIS up and running which will save some time with uploading various files to check that they are working correctly but now I have run into a new problem. What used to happen with my IIS is it would list out all of the folders which I had in the wwwroot and I would simply navigate through and select which site needed to be tested. At the moment, I have cleared out the wwwroot folder entirely since all of the stuff in there was to do with a "Windows XP Professional" page which appeared upon installation. However, now that I don't need it anymore, I decided to clear it out and test IIS out by making a new folder called "sites" into wwwroot. Now though, it simply comes up with a "Directory Listing Denied. This Virtual Directory does not allow contents to be listed." error message, even though I have changed the permissions on the wwwroot folder to allow writing etc. Could this be because it's IIS 5.1 and I need to install IIS 6.0 instead or is something else wrong? I know for a fact that my operating system (Windows Media Center Edition 2005) will do this list as I have had it before, back before I installed Vista and then decided to come back to MCE.
View Replies!
View Related
Emails Going To SPAM Folders
I can send e-mails out but many times they go directly to the recipient's SPAM box. Also, my server cannot send to any company e-mail that uses MXLogic.net's services. Going to [url]<--My server IP is on ZERO blacklists. /etc/resolv.conf appears correct /etc/hosts also appears correct Is there something that I am overlooking?
View Replies!
View Related
Accessing Shared Folders
I have server which all files and folders are stored on. Now there are a couple of folders which are only accessible by one machine at present and all the other machines when they access the folder it is displayed as empty. I have checked all permisions and all machines viewing of files settings are the same and folders accessible by all machines have the same settings as the couple which are only accessible from this one machine. If I copy and paste the folder all machines then have access to the folder from although this would be a lengthy exercise for the full hard drive.
View Replies!
View Related
Folders Display Permissions
I would to know how I can change the display permissions for my website sub folders and files from public view, for instants The current is you can access to any folders or files once trying access to any folders in my website like open this link www.yoursite.com/photos/ will see all sub-folders and files in this “photos” folder also you can see the other folders in another level by going to the top level folders! but I think there is a way to enforce my users to write the full path of any selected photo or file they want without browsing my folders and sub-folder.
View Replies!
View Related
Mystery Folders Being Created
I am designing a site for a client and in all the years I've done design etc, I've come up against a phenomenon with their VPS server they have. It's linux and uploading files I am using WS_FTP Home. I am uploading files and folders to their public_html/domain.com/ (*I use domain here for their privacy) and in some folders (directories) after doing so, a mystery folder suddenly appears that is named 5" and as you enter that folder, you see the path directory show up "public_html" and if you go into that one, you come up to the domain.com folder again, and if you deeper into that one you start to see this phenomenon of mirroring folders of the one you go into. Example: public_html/domain.com/images/5"/public_html/domain.com/images/file ***the file whether it's an image jpg, png, etc is created as the last directory as a folder, not a file. I should also mention that as you go deeper in the 5" mystery directory folder, you no longer see the path in the FTP anything past the 5" one even as you go further in. Oh, and it doesn't allow you to delete these 5" folders regardless of what permissions. And this folder seems to show up in many areas of this website's directory structure...mostly where images are (don't know if that is just a coincidence). So hope all this makes sense....anyone seen this before and what the cause could be? Their host doesn't seem to know the reason and says they cannot see it even though others can. They said it's the FTP program as the cause and not their server. My comeback to that is that I've used this FTP for years and never before seen this happen. It's only with this one client's server.
View Replies!
View Related
SSL Certificates Works For Folders?
Say i have domain zzzzz.com and have some folders say a, b and c would ssl if installed for main domain zzzzz.com work for https://zzzzz.com/a and so on ? or would wildcard ssl be required for that ? And what if that /a folder is actually a subdomain, but since you can access subdomains via url/folder instead of folder.url would ssl work on it using url/folder option instead of subdomain url ?
View Replies!
View Related
Deny Perl In Public Folders
How do you guys deny run of perl/bash scripts from /tmp, /var/tmp, /dev/shm? I've tried to build simple shell wrapper, but that's not a compromise if you run for example spamassassin on the same server (it needs direct io to/from perl binary). I'm looking intro some kind of binary wrapper or patch that will deny running perl scripts from public folders (also the same for shell scripts will be great). Any ideas or solutions? If anyone interested in primitive shell wrapper code: Code: #!/bin/sh ARGS=`echo $@ | grep -v "/tmp/"` if [ "$ARGS" != "" ]; then /usr/bin/perl.orig $ARGS; fi
View Replies!
View Related
|
TRACKER
