[TYPO3] Fileadmin got hacked
Elmar Hinz
elmar.DOT.hinz at team.MINUS.red.DOT.net
Mon Jan 23 02:01:31 CET 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
>> I set it (all 4 folders in question) to 750 and still can see the front
>> end and back end.
>
>> So I uploaded a picture to a fileadmin folder and it went, but the image
>> is overwritten with "no thumb generated!"
>
You probably uploaded with FTP using your rights as the user.
Thumb could not be generated because the server (the group) is not allowed to write.
>> I switch it back to 777 and the "no thumb generated!" disappears.
>
>
>
> With 777 everybody can write into your directory. That is definitly
> NOT sure.
>
Never use 777. Use 770 and you have it, if your server isn't to badly configured.
Regards
Elmar
- --
Climate change 2006 is killing people: floods in California, drought and fires
in Australia, Texas, Sahel, Oklahoma, South Africa. The Bush administration is
responsible for corruption of the Kyoto Protocol. The US majority is responsible
to the world for reelection of a convictable [...censored by Echelon...].
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD4DBQFD1CrrO976RNoy/18RAgVYAJdzTo4cYSe9M90AuZkgzi4v+VDQAKCDMb92
+BQzJlOg/OwPb+/MPcddAQ==
=LCfE
-----END PGP SIGNATURE-----
More information about the TYPO3-english
mailing list