Author Topic: CHMOD 777 is a big problem for me. Please help.  (Read 9191 times)

0 Members and 1 Guest are viewing this topic.

Offline Matthew Faccenda

  • Newbie
  • *
  • Posts: 1
    • View Profile
CHMOD 777 is a big problem for me. Please help.
« on: May 08, 2009, 06:35:04 PM »
Hi All,

I just installed TP, and its really beautiful software, and I'm sure it works great, but my host will not allow a script to execute if it has CHMOD 777 or 666. This is for security reasons.

When trying to add a template for toplist, TP changes my PUBLIC_HTML folder CHMOD to 777. This causes no scripts in my root not run (produces 500 Internal Server Error). I need a way around this. I cannot have anything with CHMOD 777 or 666. It seems that anything TP generates gets 777.

Someone please advise. If I can't get around this, I can't use TP.

MJF

Offline ip0li

  • mgSearkGD
  • Administrator
  • Hero Member
  • *****
  • Posts: 1963
    • View Profile
    • Pretty Girls from your city for night
Re: CHMOD 777 is a big problem for me. Please help.
« Reply #1 on: May 09, 2009, 05:17:03 AM »
Get a decent host.

Offline SPEEDNIC

  • Newbie
  • *
  • Posts: 44
    • View Profile
Re: CHMOD 777 is a big problem for me. Please help.
« Reply #2 on: May 11, 2009, 01:03:30 AM »
Someone please advise. If I can't get around this, I can't use TP.

imho you can't use any trading script because each use 777 mode. In my eyes it is the same shit as "allow_url_fopen" because there are a lot of other ways - SECURE WAYS - for software but it is a old easy programmer shit and nobody has changed it to be more secure.

For me I disallow "url_fopen" because it is the easiest way for any hacker to get files into a system. But you can install each script with "short time allow" and after installing you can disable it right now again. Each script will work without "url_fopen" because it will only be needed for "update" and "install".

As TP script and if you want it more secure - you can do a whole 755/644 for all directorys and PHP files you found but be aware that dynamic generated files like data, toplist MUST have 666 or 644 within webserveruser that they can be written.