LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 12-04-2009, 02:34 PM   #1
trist007
Senior Member
 
Registered: May 2008
Distribution: Slackware
Posts: 1,033

Rep: Reputation: 69
A question about ftp masking...


I apologize for the title. It's partially correct hehe.

I have Slackware 13.0 and I am running apache+php+postgresql server on it. I have this security issue. I have the user enter a username and password to enter the database. However, there's one hardcore vulnerability.

For example, say my website is www.example.com. It's a database of toys. They go there to enter the username and password and a query by name, brand, etc, or a show all option, and the submit button which leads them to the results of the database query. However, if the user inputs 'www.example.com/toys' then it would take the user to that directory and show all the contents. I want to disable that.

So I tried chmod 700 toys dir. Which takes care of the problem, but then all the files within the toys dir are not visible to the users. The directory toys was 700 while all the files within it were 755. How come the users aren't able to view the files which are 755? How can I resolve this issue?

I know I could rename the toys directory to a random phrase of numbers and characters but if I don't have to I would rather not.

Last edited by trist007; 12-04-2009 at 02:42 PM.
 
Old 12-04-2009, 02:45 PM   #2
trist007
Senior Member
 
Registered: May 2008
Distribution: Slackware
Posts: 1,033

Original Poster
Rep: Reputation: 69
Fixed it, chmod 711 works.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
ip masking hegedus Linux - Networking 5 06-15-2006 06:48 PM
Apache IP masking? totalshredder Linux - Software 1 01-16-2005 05:08 PM
bit masking? blackzone Programming 1 08-10-2004 02:41 AM
a question on Masking IP Address coolamit78 Linux - Networking 7 04-22-2004 07:01 AM
packet masking??? icyfire Linux - Networking 5 11-26-2002 06:54 AM


All times are GMT -5. The time now is 02:33 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration