Security question: permissions

Get help with installation and running phpwcms here. Please do not post bug reports or feature requests here.
Post Reply
chico_html
Posts: 28
Joined: Wed 18. Oct 2006, 15:07
Location: Montevideo - Uruguay

Security question: permissions

Post by chico_html »

Two of my customers sites has been hacked in the last weeks, and malware files has been copied in all directories with 777 permissions.

PHPWcms needs some directories with that permissions during the installation process.
I would like to have the lesser directories with 777. It's not a problem the installation process, but after that I'd prefer avoid it.

Is there some page or file where I could find the reason every directory with 777 need this permissions?
What are the directories that having 777 permission are a sine qua non condition for the CMS working?

Thanks,
Eduardo
Top
User avatar
Oliver Georgi
Site Admin
Posts: 9917
Joined: Fri 3. Oct 2003, 22:22
Contact:
Contact Oliver Georgi

Re: Security question: permissions

Post by Oliver Georgi »

At the end it will not help - the problem: seems your customer uses an unsecure hosting account. Remember register_globals set On and unpatched phpwcms. See security related posts here in the forum. Everything else will not help or lower your problems.

Oliver
Oliver Georgi | phpwcms Developer | GitHub | LinkedIn | Систрон
Top
Post Reply

Return to “phpwcms Support English”