Web Hosting Forums

Results 1 to 5 of 5

This is a discussion on Chmod 777 in the Hosting Talk & Chit-chat forum
Glory! I need to CHMOD 777 a directory on my server, to run an upload script for a PenPal system. Now the script requires 777, ...

  1. #1
    Loyal Client
    Join Date
    Feb 2002
    Posts
    35

    Chmod 777

    Glory!

    I need to CHMOD 777 a directory on my server, to run an upload script for a PenPal system. Now the script requires 777, as i tried it with 666 but it did not work.
    The script however checks the File being uploaded for :
    File Type.. Only JPG allowed
    File Size.. Only Upto 250 KB allowed

    Now what are the Harms of having the 777 for the Directory?

    Thanks,
    2Shy
    rahulsjohari

  2. #2
    Like a star... Julian Muņoz's Avatar
    Join Date
    Oct 2002
    Location
    Colombia
    Posts
    1,368
    Uhmm... Maybe because Apache needs to write a file to that directory, and 777 is the only way to do that...
    Julian D. Muņoz - LANeros.com

  3. #3
    Loyal Client
    Join Date
    Jul 2001
    Posts
    200
    I have used 747 instead of 777 in the past. I don't know if it's any more secure than 777, but it seems to work fine.

  4. #4
    Loyal Client
    Join Date
    Nov 2002
    Posts
    20
    Or you could try using 775, you should get the same result as 777.

  5. #5
    Loyal Client
    Join Date
    Oct 2001
    Posts
    216
    Having your directory as 777 allows EVERYONE to do *anything* they want to it. Write to it, delete files in it, change it, etc. And they don't need to use scripts on your site to do it!

    Also, 757 is just as vulnerable as 777. The last number is the one you should worry most about. 7 on a directory will let the user read the directory listing, write to it, and access it.

    Depending on your script, you may be able to set it to 3, which will let you write files in it. But they'll not be able to see the filenames in the directory. If they already know the filename, they can read it.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •