Menu

#355 linux web dir security settings

Latest_version
closed
nobody
Installation (77)
5
2012-05-28
2012-05-27
Anonymous
No

Simple Groupware version: 0.745
Simple Groupware language: en
PHP Version: 5.3.6-13ubuntu3.7
Database + Version: pgsql 913
Server OS: Linux dft 3.0.0-20-generic #34-Ubuntu SMP Tue May 1 17:28:21 UTC 2012 i686
Webserver: Apache/2.2.20 (Ubuntu)
Webbrowser: Mozilla/5.0 (X11; Linux i686) AppleWebKit/535.19 (KHTML, like Gecko) Ubuntu/11.10 Chromium/18.0.1025.168 Chrome/18.0.1025.168
Safari/535.19
APC cache usage: not installed

Problem description:

Dear SG team,

when doing the installation, following the manual, I get to the below point:

Create a new directory under your document root and make it world writable
(e.g. /var/www/sgs/)

now, this is almost setting that dir to 777 mode! This is fine for the installation procedure but what happens afterwards? Which settings are recommended to keep that one safe?

Thanks

Discussion

  • Comment has been marked as spam. 
    Undo

    View and moderate all "support-requests Discussion" comments posted by this user

    Mark all as spam, and block user from posting to "Support Requests"

    Anonymous

    Anonymous - 2012-05-27

    Thanks for your prompt reply but I did follow that documentation and couldn't figure out any recommendation for the linux file system dir security settings after the installation is done. This public 'w' access right does worry me a bit. Except if I missed something?

    Tim

     

  • Thomas Bley

    Thomas Bley - 2012-05-28

    Hello,

    you can make the system read-only, but then you can't upload files or write data into the database.

    bye
    Thomas

     

Log in to post a comment.