Global permissions

[inspire7]

Hi, I am using WAMP and planning to run Oscommerce from my window7 system, I've read in the installation guide that

you must change global permissions to 777. Would someone please tell me how I could do this on a windows system.

I have right-clicked on the folders/properties. And found permission to allow everything already selected. Is this right?

[web-project]

I have right-clicked on the folders/properties. And found permission to allow everything already selected. Is this right?

have you tried the security option for folder? you can specify the read only, modify permission for every user or system.

[inspire7]

have you tried the security option for folder? you can specify the read only, modify permission for every user or system.

 

Thankyou for your quick reply, I entered the security option, I found that under

users(PC\user) selection is only in read, I guess the 777 must correspond to selecting write in this option.

 

Thanks again

[stijnw]

Thankyou for your quick reply, I entered the security option, I found that under

users(PC\user) selection is only in read, I guess the 777 must correspond to selecting write in this option.

 

Thanks again

 

Hello,

 

i have the same problem.

I use dreamweaver to create my php files and i put them on a localhost server, using wamp.

When i want to put a webshop using oscommerce i get the following error:

 

"Warning: I am able to write to the configuration file: C:/wamp/www/dwwithphp/catalog/includes/configure.php. This is a potential security risk - please set the right user permissions on this file."

 

My question is where exactly can i change this permission?

I dont see my files in the wamp evironnement..?

 

 

thanks in advance!

[stijnw]

*solved*

[MrPhil]

I've read in the installation guide that you must change global permissions to 777.

NO NO NO NO NO! That guide was written by idiots and should have been corrected long ago.

 

Any web application, including osC, should normally have its directories (folders) writable by the owner, and read-only for everyone else. On a Linux system this is 755, which is usually the default. In some server configurations, when you need for the application itself to upload files to a directory, you will need to change specific directories to allow writing by the owner's "group", or even by "world/others" (775 or 777). You should wait until the application complains that it is unable to write to a directory, before changing permissions. Presumably Windows has something analogous to extending write permissions to other than the owner -- it may involve turning "off" read-only settings for non-owners, but I'm not familiar enough to tell you how to do it. If you have to change some directories to 777 in order for osC to upload some files, change it back to 755 as soon as you're done, so hackers are locked out.

 

Files that need to be modified or changed by the application are in a similar boat. First, try with the default permissions (which generally grant write permission to the owner, such as 644). If the application complains that it can't write to a file, try 664 and then 666 (and change back to 644 when done).

 

The inverse problem is with the two "configure.php" files. osC wants them made "read-only" so that it cannot (through accident or malicious input by visitors) overwrite them. If PHP (and osC) run as "owner", you will have to change 644 to 444 (make Read-Only for owner, in Windows) to "safe" these two files. If PHP/osC runs as group or world, 644 will be safe. Don't bother doing this unless osC actually complains that it can write to configure.php. And remember to restore owner write permission before trying to edit or upload a new copy of these files.

 

Read my sig > FAQs > Proper Permissions