Unsafe Permission Recommendations During Install
|
m00dawg
Joined: 2009-08-17
Posts: 2 |
Posted: Mon, 2009-08-17 20:04
|
|
While Gallery itself is quite awesome, I have concerns over some of the recommendations the installer picks for certain files. You should generally never set a file to 777 or 666. Instead, you should set the group the web-server runs under as the group and then give the group those permissions, for instance, the following is ugly: chmod 777 /path/to/gallery/modules This, however, is much better: chgrp www-data /path/to/gallery/modules Practically does it matter? If all the server is running is Gallery probably not. But on a shared box? You can bet that would be a good idea! |
|
Posts: 22892
Your method is better, but is impractical for most people that are on a shaed host that only have ftp access and can't change owners or groups though FTP. Remember that some users don't even have FTP access and only can get to files via some form of host supplied control panel. We have to have support for them as well.
Please update the documentation with your findings for people that have the proper access to the server to do such commands.
A properly configured server what has a user run in chroot jail for its users then others will not have access anyway.
Dave
_____________________________________________
Blog & G2 || floridave - Gallery Team
Posts: 2
I see what you mean, but it seems like it would make sense for the Gallery installer to elaborate on this, or at least have some sort of link that directs the person installing it to the documentation to outline the details.
Having said that, I'll see about modifying the documentation - I hadn't realize it was a Wiki or I might have just done that to begin with
Posts: 22892
Great! We welcome your contribution.
Dave
_____________________________________________
Blog & G2 || floridave - Gallery Team