| Linux - Server This forum is for the discussion of Linux Software used in a server related context. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
 |
GNU/Linux Basic Guide
This 255-page guide will provide you with the keys to understand the philosophy of free software, teach you how to use and handle it, and give you the tools required to move easily in the world of GNU/Linux. Many users and administrators will be taking their first steps with this GNU/Linux Basic guide and it will show you how to approach and solve the problems you encounter.
Click Here to receive this Complete Guide absolutely free. |
|
 |
04-08-2010, 08:58 PM
|
#1
|
|
Member
Registered: Mar 2010
Location: las vegas, nv
Distribution: debian etch, kubuntu, mac osx 10.51, vista
Posts: 65
Rep: 
|
what are the results of 664 permisions?
hi,
i am trying to set permissions on my wordpress install such that the wordpress admin can write to the files and directories in the wordpress tree. otherwise i have to do all the things wordpress does automatically by hand with vi.
of course i would like to have permissions set as precisely as possible for security.
at present the files are set to 644 (-rw-r--r--). my plan is to change permissions to 664 (-rw-rw-r--) using chmod. ie "chmod -r 664 ./wordpress".
please advise.
|
|
|
|
|
04-08-2010, 11:12 PM
|
#2
|
|
Member
Registered: Mar 2006
Posts: 33
Rep:
|
To answer your question setting mode 664 may or may not allow apache to write. You will most likely need to chgrp the files to apache as well.
In general it is a bad idea to allow apache to write in the document root, but unfortunately as you see wordpress requires it. I manage linux servers for customers of all sizes from VPSes to 200+ machine installs. I only manage the OS level. They manage the apps. The single biggest exploit vector I see is due to web apps, and the most commonly exploited is wordpress. Sorry for the tangent, but my point is don't just start changing permissions until it works. Google and read a few articles on securing wordpress. Know how and what need exactly which permissions before relaxing file permissions on the server. And be extra vigilant on keeping wordpress updated.
|
|
|
1 members found this post helpful.
|
|
04-09-2010, 12:00 AM
|
#3
|
|
Member
Registered: Mar 2010
Location: las vegas, nv
Distribution: debian etch, kubuntu, mac osx 10.51, vista
Posts: 65
Original Poster
Rep:
|
ty mweed,
i will go slow and do some homework as you advise. chgrp is a good idea i had overlooked.
|
|
|
|
|
04-09-2010, 12:07 AM
|
#4
|
|
Member
Registered: Mar 2010
Location: Tennessee, USA
Distribution: Arch, Fedora
Posts: 59
Rep:
|
As the previous post hinted, you will also need to make sure that the files are in Apache's group (apache on some distros, httpd on others, it's in httpd.conf). You might also want to note whether or not Apache has x on the directories too. IIRC, the recursive option for chmod is -R and not -r.
To the previous poster: Is there a list you could recommend of wordpress vulnerabilities and how to properly secure them? Is it more of a problem from the PHP or the MySQL?
|
|
|
|
|
04-09-2010, 12:36 AM
|
#5
|
|
Member
Registered: Mar 2010
Location: las vegas, nv
Distribution: debian etch, kubuntu, mac osx 10.51, vista
Posts: 65
Original Poster
Rep:
|
here is a link to a recent post in the wordpress forum describing how mysql was exploited. if you scroll down you will see a few links a moderator recommended reading to prevent it from happening again...
http://wordpress.org/support/topic/385477?replies=43
i am not sure where to begin with what groups should be considered. but apache and httpd. thanks  |
|
|
|
| Thread Tools |
Search this Thread |
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -5. The time now is 04:26 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
