directory permissions

zzz

I use a script to upload images into user directory. I noticed that when I moved the site to a new server some directory permissions changed to 755, which now prevents the script from uploading the new images. It works well when permissions are set to 777 or 666.

I think it's a better practice to keep it set to 755. How do I change permission to 666 before upload and back to 755 after upload completes?

bpat1434

you can use [man]chmod/man to do it... IF the server allows you. If the server doesn't allow you, you will have to use 777 permissions.

Or you could set your server up so that php runs as the user currently running in the site (i.e. each virtualhost defines the UserGroup setting to be their username) so that php runs as that ftp user and can rwx any directory they immediately control.

I hope you don't think that not having 777 permissions on your server will protect you. That's not always true. It would be better if you chose to check the files coming in for valid content and denied access to that folder by direct browsing OR disabled php/asp/cgi/python/perl or any other language or force the files to download so that they can't be maliciously run.

Kudose

In addition, it sounds like your new server has a umask of 022. Just an FYI on what could cause the permission changes.

zzz

bpat1434;10890383 wrote:
you can use [man]
Or you could set your server up so that php runs as the user currently running in the site (i.e. each virtualhost defines the UserGroup setting to be their username) so that php runs as that ftp user and can rwx any directory they immediately control.

I have full access to my server but I'll need guidance where to look and how to do this...