Jump to content
joats

Site permissions

Recommended Posts

Thank you for the information provided, but I am hoping that there IS a list of what permission settings are best and when they should be used. Is there a page regarding this information someplace? I've found some great tips in the Forum re: security etc and permissions, but not this specifically.

 

1. I would like to have the settings so that I am able to work on the site without leaving it open for people who chance upon it to take advantage of the site, but can still have access on the Int to view it as I am building it. Right now, I have cold feet about uploading anything and making it viewable until I have resolved this issue.

 

2. I would like to know where to study up on 'permission settings' and what the numbers allow. It seems 7 is the highest and 0, therefore is the lowest. SO: If I set ALL my permissions to 700 will that allow me to work on the site still or do I have to set it to 755 or 744 or somesuch.

As well: do I have to set ALL folders to 700 or can I just make .htaccess 700 and feel secure that any folders under that are secured as well?

 

My main issue was that I had started working on a forum and then stopped to learn some. In the meantime, someone had included links in the forum.

Because I did not know how to determine if the site itself had had hacking into it, I have deleted MySQL database and will be setting it up again, I don't know if that had anything to do with it, but it had some memory usage and I hadn't done anything to use it to my knowledge. (as a note, no loss on the database, it should not have had anything in it and i just need to create it again.)

Thanks! jaci

 

I'm doing this web thing to learn...like a hobby...so far so good.

 

Tonight I tried to go onto my forum...it's just another learing tool...and I came up with a whole page of errors in my browser and could not get into the forum!

 

I did go back to cPanel and I see that there has been a lot of traffic into my admin folder...Now I don't remember what the permissions were to be set at?

 

Is there a list or page someplace where i can see what the default and recomended settings are and should be? and the settings for permissions of things I might add also.

 

2nd question

 

Can i just rebuild the whole forum or reload a new one...I have DLed 2 that I would like to play with?

 

If you want to take a look it's at onthefareastend.com/forum :lol2:

Share this post


Link to post
Share on other sites

If you only want to allow access to your site for yourself I would recommend not changing any permissions but rather editing (or creating) an .htaccess file in your public_html folder that allows only your personal IP address to access the site.

 

In you .htaccess file enter the following:

 

>deny from all
allow from xxx.xxx.xxx.xxx

 

Replace xxx.xxx.xxx.xxx with your IP address.

Share this post


Link to post
Share on other sites

Thank you, Bruce --

I believe at the time I asked this, I (possibly unfortunately) went ahead and attempted to make it so that all permissions were basically not allowed, since I didn't know any better at that time and i hadn't seen your reply.

Now, it appears, i need to reset the permissions. it would be great to understand them better:

 

1. Is there a tutorial in particular that might explain what the settings mean in the different categories (i.e., group,etc.) that will help me understand what setting a 4 or 7 will allow (or disallow) for that particular group?

2. Also: what if I wanted to post my web pages but didn't want them accessed yet? or, in a diff case, as in a blog, i want to allow visitors to remark, but not be able to change the original content. (which i would expect the diff values in each group would have something to say about that...)

 

Is there a missive somewhere in the forums that i've missed? When I search for "Site permissions" or just "permissions" i get this blog.

What should i be searching for?

thanks

jaci

(sorry, re-read your post and understand that that answers part of my #2 question, thank you.)

 

 

 

If you only want to allow access to your site for yourself I would recommend not changing any permissions but rather editing (or creating) an .htaccess file in your public_html folder that allows only your personal IP address to access the site.

 

In you .htaccess file enter the following:

 

>deny from all
allow from xxx.xxx.xxx.xxx

 

Replace xxx.xxx.xxx.xxx with your IP address.

Edited by joats

Share this post


Link to post
Share on other sites

Let me try and explain .....

 

There are three lots of permissions the first of these corresponds to the "user" (you when logged in); the second number corresponds to the "group"; and third number corresponds to "everyone" or "world". Generally you can think of the second and third as being "others" and not you.

 

The available permissions are Read, Write, and eXecute. Each permission is assigned a different number:

 

Read = 4

Write = 2

eXecute = 1

 

Add the numbers for the permissions you want to assign to each position.

 

To give the user (you) all permissions, you add up the numbers for the three permissions: Read (4) + Write (2) + eXecute (1) = 4 + 2 + 1 = 7

 

To give the "group" and "world" Read and eXecute (not Write) permissions: Read (4) + eXecute (1) = 4 + 1 = 5

 

Put them together and you get 755.

 

So, in short, if you change a file's permissions to 777, that will give all permissions to everybody. Not generally a wise thing to do :surrender:

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...