Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

What are correct File,Folder Permissions


mirza_yasir4

Recommended Posts

Posted

Dear All

 

What should be correct file/folder permissions for all OsCommerce store.

 

I checked with FileZilla, the permissions for my store's root directory set to 757 (read ,write, execute)

While inside 'admin' folder has the same 757 (read write execute)

 

but remaining folders has 750 (read write execute)

 

also I checked the configuration files.

includes\configure.php has 454 : Owner (Read) Group(Read, Execute) and Public (Read)

admin\includes\configuration.php has 750 : Owner (read,write,execute,Group(Read, Execute) and Public (none)

 

all remaining files set to 750 : Owner (read,write,execute,Group(Read, Execute) and Public (none)

 

What should be correct, please guide me.

Thanks and Regards

Yasir Imran Mirza

My Contributions

Posted
Files - 644

Directories - 755 (try not to use 777 if you don't have it because it is a major security risk)

configure.php - 444

 

Is this correct ?

 

I got it through forum search..

Thanks and Regards

Yasir Imran Mirza

My Contributions

Posted

Need help installing add ons/contributions, cleaning a hacked site or a bespoke development, check my profile

 

Virus Threat Scanner

My Contributions

Basic install answers.

Click here for Contributions / Add Ons.

UK your site.

Site Move.

Basic design info.

 

For links mentioned in old answers that are no longer here follow this link Useful Threads.

 

If this post was useful, click the Like This button over there ======>>>>>.

Posted
Is this correct ?

 

I got it through forum search..

Yes, that is correct, in general. You may not have a choice for the directories since it depends on how the server is setup. And some contributions require files to have write permission but you should keep them at 644 unless told otherwise.

 

Jack

Support Links:

For Hire: Contact me for anything you need help with for your shop: upgrading, hosting, repairs, code written, etc.

All of My Addons

Get the latest versions of my addons

Recommended SEO Addons

Posted
Yes, that is correct, in general. You may not have a choice for the directories since it depends on how the server is setup. And some contributions require files to have write permission but you should keep them at 644 unless told otherwise.

 

Jack

 

Thanks bro

 

but...

 

Create the directory admin/backups and set the permissions to 777 (this is the folder to store the database backup of your store in the "Tools" section of the store admin).

 

Is 777 means, public readable

if this will make the sql backup file to be downloaded for the hackers ?

Thanks and Regards

Yasir Imran Mirza

My Contributions

Posted

While it should be 755, unless your server demands otherwise, how will a hacker get into admin to download it? If they are able to get into your admin section, you will probably have a lot bigger problems than a stolen database.

 

Jack

Support Links:

For Hire: Contact me for anything you need help with for your shop: upgrading, hosting, repairs, code written, etc.

All of My Addons

Get the latest versions of my addons

Recommended SEO Addons

Posted
While it should be 755, unless your server demands otherwise, how will a hacker get into admin to download it? If they are able to get into your admin section, you will probably have a lot bigger problems than a stolen database.

 

Jack

 

 

I'm always have my folder to 755

 

It very secure...

Erwin D. Padilla

Web Developer and Linux Admin

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...