[nycphp-talk] Re: File uploading - File Permission
Webapprentice .
webapprentice at mail.com
Wed Jan 7 00:24:53 EST 2004
What about if I change it to 666?
I need to be able to write the file to a target directory after I move it out of /var/tmp (where PHP keeps uploaded files temporarily)
I took the precaution of creating the target directory in a place NOT in public_html. That way, a user couldn't attempt to access the file via URL. I also check the file extension to make sure it ends in .bmp, .jpg, or .gif. I was under the impression that in order to execute PHP, Perl code, the server has to recognize the extension.
--Stephen
>>>>>>>>Date: Tue, 6 Jan 2004 16:02:04 +0530
From: "Anirudh Zala" <xml at aumcomputers.com>
Subject: Re: [nycphp-talk] Re: File Uploading Permission Problem
(solved)
To: "NYPHP Talk" <talk at lists.nyphp.org>
Message-ID: <01d501c3d440$54be77f0$0164a8c0 at aum1>
Content-Type: text/plain; charset="iso-8859-1"
This is not good to keep 777 permission to your images (or any other
file)
as it is hazardous and can cause severe problem if someone can access
your
file system. Assigning permission 777 to any file may eliminate your
problem
temporarily but eventually not suitable to carry on solving your
problems
with this permission. Try to assing appropriate permission to your
files
which is actually required and can keep them safe from being deleted
or
misused. Read artilces about securiy and file permission on any good
PHP
site or contact your server administrator for more information.
Anirudh Zala<<<<
--
___________________________________________________________
Sign-up for Ads Free at Mail.com
http://promo.mail.com/adsfreejump.htm
More information about the talk
mailing list