Gossamer Forum: Products: Others: Fileman: Security

Gossamer Threads

Home : Products : Others : Fileman :

Security

Nov 18, 1998, 10:55 AM

Jesse Fitzgerald

New User (1 post)

Nov 18, 1998, 10:55 AM

Post #1 of 2

Shortcut

Security

Hi there. I own a virtual domain at a presence provider (World Wide Mart). Question: if I chmod my root directory, the one that the server is pointing my domain at, to 777, won't every one who logs into the shell be able to modify my files? My root directory's permissions are currently rwxr-xr-x. With Fileman, I can currently modify files in the /fileman directory only (permissions are set to 777 and the directory is protected via apache authentication). Any feedback will be greatly appreciated,

Kind regards,

Jesse Fitzgerald
jesse@cajun.com

Nov 23, 1998, 10:17 AM

Alex

Administrator (9387 posts)

Nov 23, 1998, 10:17 AM

Post #2 of 2

Shortcut

Re: Security In reply to

Hi Jesse,

Sorry for the late reply. Yes, setting your home directory will make your site vulnerable to people with shell access. A workaround is to use CGIwrap which will run your scripts under your own userid access (catch 22 here though, you can't password protect scripts which run under cgiwrap. We will be releasing a single version of the script with built in password controls shortly to fix that).

If you have any other questions, don't hesitate to ask!

Alex

Gossamer Threads is a Vancouver-based company with over 28 years experience in web technology. From development to hosting, we partner with leading organizations around the globe and help to build their web presences, strategies and infrastructures.

Let’s talk: 1-877-715-7676