发表新帖
发表新帖

Still don't understand file upload-folder permissions

后端 未结
关注
4 1774
不思量自难忘°
不思量自难忘° 2021-01-26 02:12

I have checked out articles and tutorials.

I don\'t know what to do about the security of my picture upload-folder.

It is pictures for classifieds which should b

相关标签:
4条回答
  • 梦毁少年i
    2021-01-26 02:31

    One possibility for why it only works with 777 permissions might be if you are running SELinux. It's possible that it is preventing the write. I would have thought though that it would have prevented it even with the 777 permsissions but I'm no SELinux expert.

    0 讨论(0)
  • 春和景丽
    2021-01-26 02:43

    0 No Permissions (the user(s) cannot do anything)

    1 Execute Only (the user(s) can only execute the file)

    2 Write Only (the user(s) can only write to the file)

    3 Write and Execute Permissions

    4 Read Only

    5 Read and Execute Permissions

    6 Read and Write Permissions

    7 Read, Write and Execute Permissions

    First number = OWNER Second number = GROUP Third number = OTHER USERS

    0 讨论(0)
  • 北海茫月
    2021-01-26 02:44

    Every newbie mix users up. :)
    You just have to distinguish OS user and website user.
    The latter one has nothing to do with OS permissions.

    For the OS users you have given 2 of them:

    1. FTP user, owner of the files, uploaded via FTP
    2. webserver user, owner of the files uploaded via browser.
    3. Site user, who have no direct access to any files at all.

    So, in case both these users are the same, you have no worry about.
    But usually these are different users. So, one has no access to other's files unless directories has 777 and files 755.
    That's why you have to set 777 for directories.
    As we have learned above that website users has nothing to do with os permissions, you should not worry about security. 777 is ok.

    0 讨论(0)
  • 心在旅途
    2021-01-26 02:45

    You have to make sure the upload folder is owned by apache or whoever user is as which the http server is started.

    Alternatively you can use 775 owned by the UID who will be collecting the files and with as gid the group id as which the webserver is started.

    There are of course variations on these themes.

    As long as the webserver user or webserver group has permission to write in the folder, it will be fine for uploading.

    There are all kind of cornercases, but then we'll need more info about your setup.

    0 讨论(0)
 看不清?
提交回复
热议问题