Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Permissions...?


Nitro187

Recommended Posts

I want to use the file manager, but I can't unless I have FULL write permissions ( CHMOD 777) to all the files. I do NOT want this, as anyone would then be able to edit files. But how do I make it so I can, without risking security?

 

I tried setting write permissions to group, nothing.... I MUST set it to public... and that makes no sense.

 

There has to be a way.

 

Thanks.

Link to comment
Share on other sites

Most people, when they go thru the Admin section, are not 'logged' in to the system, except by just going to the page. You need to create a login of your user name that your system recognizes, allowing you to change pages. The easiest way tho, would be to use Dreamweaver, or the like, which allows you to have a copy on your local computer that you modify, then just highlight the file and click on 'put' which will then transfer the file into the proper location with the proper file attributes and you do not compromise security.

Link to comment
Share on other sites

Is it your server? If it is, you can set up a separate instance of apache that runs as a different user (i.e. not nobody) that is chrooted to a password protected admin directory (may need to add a symlink to allow image access). I haven't done this, so I don't know the details of how to do it. I do know that it is possible.

 

There is also something called phpsuexec that might help you.

 

Hth,

Matt

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...