sudo 775 -R /var/www -> will disable "others" from writing into the DocumentRoot

On Wed, Jun 16, 2010 at 3:32 PM, Odhiambo Washington <odhiambo@gmail.com> wrote:


On Wed, Jun 16, 2010 at 3:29 PM, Samuel Waithaka <samwaithaka@gmail.com> wrote:
Bernard,

> change to root : sudo su
> <root password>
> chmod 755 -R /var/www
> or you could chown userid:usergroup id /var/www

> Although not recommended, chmod 777 -R /var/www for all read/write permissions.
I settled for it, (chmod 777 -R).
Tried Martin's though it was quite a pain so I shelved it. Thank you
all for the help.


So now you are happy to write a server that is so easy to compromise?? Basically, anyone will be able to upload files into your webserver's DocumentRoot. 


--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254733744121/+254722743223
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
"If you have nothing good to say about someone, just shut up!."
              -- Lucky Dube

_______________________________________________
Skunkworks mailing list
Skunkworks@lists.my.co.ke
http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks
------------
Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&hl=en
------------
Skunkworks Rules
http://my.co.ke/phpbb/viewtopic.php?f=24&t=94
------------
Other services @ http://my.co.ke