Images: chmod 777 folder!!!

timbolt

When doing a file upload type project in PHP with a MySQL database, the following issues arise:

1) performance and ease: including the file in the actual MySQL database vs. uploading to a directory and storing a reference to the binary file in the database

2) php security: From my tests, it seems that the permission on the folder to which the file is being uploaded must be 777, a real security draw-back!

Anyone have samples of uploads that do not need chmod 777 folders?

Thanks,
Tim

Anon

If you use a wrapper to make the script use your username you shouldn't have to chmod 777 the folders.

Peace,
Tom

timbolt

What kind of wrapper can be used with PHP???

(Our server came with CGI-wrap installed for perl scripts).

Any further help well appreciated!

Tim

Anon

PHP-CGIWrap is a script that I guess is only offered by pair Networks, the people I resell hosting for. Their documentation on it is here:

http://www.pair.com/pair/support/library/systemcgi/php-cgiwrap.html

I just searched the net for it, but I couldn't find any places to download it, and saw one place that said you can only use it if you're a customer of pair Networks. =\

Peace,
Tom