Operating Systems > Linux and UNIX

Default Apache Security

<< < (2/2)

voidmain:

quote:Originally posted by TheQuirk:
Edit: nevermind, I get it. So shoot me.

--- End quote ---


Yes but both of your chmod commands will make the files in question executable. The 7 makes them executable for owner (rwx). And PHP files are dynamic yet they should not be set executable. 644 would be ok for non-executable files as long as the owner of the file is not "apache". And 755 would be ok for executable files, again as long as they are not owned by user "apache".

I hope I didn't upset you. It's just that security is one thing that everyone should be open for correction (and please correct me if you see me putting out information that is incorrect, I will surely appreciate it).

[ January 16, 2003: Message edited by: void main ]

billy_gates:
thanks for your help, I'm really new at this apache/linux/webserver stuff.
I also won't have any CGI or anything dynamic besides flash and PHP.  Are flash file something I should leave unexecutable?

[ January 16, 2003: Message edited by: Billy Gates: Mac Commando ]

voidmain:

quote:Originally posted by Billy Gates: Mac Commando:
thanks for your help, I'm really new at this apache/linux/webserver stuff.
I also won't have any CGI or anything dynamic besides flash and PHP.  Are flash file something I should leave unexecutable?

[ January 16, 2003: Message edited by: Billy Gates: Mac Commando ]
--- End quote ---


Correct, flash files should not be set executable. The only files that need to be set executable are files that are actually executed by the operating system running on the server (of course directories have to be set executable if you actually want to be able to change into them, and there are a slight few other exceptions to this). Flash does not fall into that category.

Navigation

[0] Message Index

[*] Previous page