At 08:43 PM 08/12/02 -0500, you wrote:
----- Original Message ----- From: "William J.A. Brillinger" Sent: Sunday, December 08, 2002 7:55 PM Subject: [cobalt-users] [RaQ4] file permissions > What are the *actual* security implications of having a public web dir > chmod'd to 777? > > (Go easy on me, I already know I am basically stupid) > > - Bill B > > > --------------------------------- > William J.A. Brillinger > Precision Design Co. > > _____________________________________ Bill ... a quick thing on file permissions ... incase you do not know. ---SNIP--- This concludes a basic tour on file permissions. I hope that it has helped you out some! Brian N. Smith
Thanks Brian. I know the basics on file permissions I was more looking for a real world example of how a user who does not already have access to my server could cause damage to a dir (say: home/sites/www.somesite.tld/web/mychmodded777dir/)
We have a php script that needs to use a few binaries on the system for image manipulation and write the resulting files to the disk. we currently have the dirs owned by httpd and chmod'd to 775 - works fine. If the user owns the dirs then they had to be 777.
- Bill B. --------------------------------- William J.A. Brillinger Precision Design Co. E-Mail: mailto:billy@xxxxxxxxxx Web site: http://www.pdcweb.net