[TYPO3-linux] mkdir (...) Permission denied
Franz Holzinger
franz at fholzinger.com
Thu Oct 4 07:49:47 CEST 2007
Hello Michiel,
> The one and only working solution I have found is to add the user (as
> which you transfer files) to the apache/www group. Then tell your ftp
> client to use 0664 and 0775 umasks and also tell (as pointed out by
> stucki, but more restricitve) 0664 and 0775 for the TYPO3 masks.
FTP is not secure because it transfers passwords without encryption over
the internet. This results in hacked sites.
> This solution is the 'least bad' solution I could come up with. It of
> course gives everybody else in the apache/www group right to trash your
> files . . . . But of course . . . your hosting provider will certainly
> have set a very restrictive open_basedir path and disabled symlinking
> and exec etc. So that should not be much of a problem.
The directory must be restricted also for FTP and SSH. Otherwise all
users can read the files of the others. I think it would be safer not
use use the safe_mode and not to have the www group for all users.
- Franz
More information about the TYPO3-linux
mailing list