You need to make sure the web server (typically Apache) has ownership of the directory as well. In Ubuntu for instance, you'd cd to your website site directory and do a:
chown -R www-data:www-data
-----Original Message-----
From: "Timothy Michel" webdevtim@users.sf.net
Sent: Sunday, April 17, 2016 7:04pm
To: "[tcpdf:discussion]" 435311@discussion.tcpdf.p.re.sf.net
Subject: [tcpdf:discussion] PERMISSIONS FOR FILES AND FOLDERS
I followed the instructions and set permission for TCPDF TO 666 and and cache, fonts and images to 666 and everything else to 664, but I can't access anything, because it makes sense that at least owner needs execute priveleges. What privelege levels work the best for both security and accessibility? I am using this with a Joomla installation.
OK, I think my host is having trouble understanding what needs to be done. They say that each domain is assigned a root user and that in my case that is truthou6. I tried to change the user to apache, but I got a operation not allowed message. I don't even know what flavor of Lynux the website is hosted on.
wouldn't that be – chown -R www-data:www-data tcpdf – ?? as I only want system level ownership applied to the tcpdf folder and it's contents.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
-sh-4.1$ uname -a
-sh-4.1$ Linux lamp7... GNU/Linux
What the host said is:
The only correct ownership for your site "webdev.911truthoutreach.org" is "truthou6" and every file and directory under your home should have this ownership otherwise you'll encounter problems.
Having this username ownership and then setting 755 for folders and 644 for files should be the most secure setting.
This is what I will do.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
-sh-4.1$ uname -a
-sh-4.1$ Linux lamp7... GNU/Linux
Which dumbass provider is that‽
What the host said is:
The only correct ownership for your site "webdev.911truthoutreach.org"
is "truthou6" and every file and directory under your home should have
this ownership otherwise you'll encounter problems.
Having this username ownership and then setting 755 for folders and
644 for files should be the most secure setting.
This is what I will do.
No, 750 & 640 is much more secure (and when you have more than one user,
chmod 750 /home/<username> too.)
Jean-Yves
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
You need to make sure the web server (typically Apache) has ownership of the directory as well. In Ubuntu for instance, you'd cd to your website site directory and do a:
chown -R www-data:www-data
-----Original Message-----
From: "Timothy Michel" webdevtim@users.sf.net
Sent: Sunday, April 17, 2016 7:04pm
To: "[tcpdf:discussion]" 435311@discussion.tcpdf.p.re.sf.net
Subject: [tcpdf:discussion] PERMISSIONS FOR FILES AND FOLDERS
I followed the instructions and set permission for TCPDF TO 666 and and cache, fonts and images to 666 and everything else to 664, but I can't access anything, because it makes sense that at least owner needs execute priveleges. What privelege levels work the best for both security and accessibility? I am using this with a Joomla installation.
PERMISSIONS FOR FILES AND FOLDERS
Sent from sourceforge.net because you indicated interest in https://sourceforge.net/p/tcpdf/discussion/435311/
To unsubscribe from further messages, please visit https://sourceforge.net/auth/subscriptions/
OK, I think my host is having trouble understanding what needs to be done. They say that each domain is assigned a root user and that in my case that is truthou6. I tried to change the user to apache, but I got a operation not allowed message. I don't even know what flavor of Lynux the website is hosted on.
wouldn't that be – chown -R www-data:www-data tcpdf – ?? as I only want system level ownership applied to the tcpdf folder and it's contents.
On Mon, 18 Apr 2016 04:37:54 +0000
"Timothy Michel" webdevtim@users.sf.net wrote:
uname -a
Bad idea, always keep root as the owner and just add www-data
(minimal) permissions when and where needed (only).
Jean-Yves
-sh-4.1$ uname -a
-sh-4.1$ Linux lamp7... GNU/Linux
What the host said is:
The only correct ownership for your site "webdev.911truthoutreach.org" is "truthou6" and every file and directory under your home should have this ownership otherwise you'll encounter problems.
Having this username ownership and then setting 755 for folders and 644 for files should be the most secure setting.
This is what I will do.
On Mon, 18 Apr 2016 19:20:34 +0000
"Timothy Michel" webdevtim@users.sf.net wrote:
Which dumbass provider is that‽
No, 750 & 640 is much more secure (and when you have more than one user,
chmod 750 /home/<username> too.)
Jean-Yves
The host is CloudAccess.net