[TYPO3-linux] mkdir (...) Permission denied
Michiel Roos
michiel at netcreators.com
Fri Oct 5 09:43:39 CEST 2007
Franz Holzinger wrote:
> Hello Michiel,
>
>> The one and only working solution I have found is to add the user (as
>> which you transfer files) to the apache/www group. Then tell your ftp
>> client to use 0664 and 0775 umasks and also tell (as pointed out by
>> stucki, but more restricitve) 0664 and 0775 for the TYPO3 masks.
>
> FTP is not secure because it transfers passwords without encryption over
> the internet. This results in hacked sites.
Ack
>> This solution is the 'least bad' solution I could come up with. It of
>> course gives everybody else in the apache/www group right to trash your
>> files . . . . But of course . . . your hosting provider will certainly
>> have set a very restrictive open_basedir path and disabled symlinking
>> and exec etc. So that should not be much of a problem.
>
> The directory must be restricted also for FTP and SSH. Otherwise all
> users can read the files of the others. I think it would be safer not
> use use the safe_mode and not to have the www group for all users.
Well, yes. The best setups have a user and group for a client. This
client then has access to his own home dir (which includes the web
folder) and can access this over SSH (which chroots to his homedir).
Then the webserver process runs as the same user and group (this can be
done when one uses php_cgi).
Apparrently the hosting party does not have such a setup.
--
Netcreators BV :: creation and innovation
www.netcreators.com
Interesse in werken bij Netcreators?
http://www.netcreators.com/bedrijf/vacatures/
More information about the TYPO3-linux
mailing list