Joomla

moonlightfans · December 27th, 2007, 6:35 PM

Hey everybody, when I transferred my Joomla site to Surpass, the chmod permissions got all screwed up.

I was hoping someone here could tell me what permissions on what files worked for their Joomla site?

**puckchaser** · December 27th, 2007, 7:13 PM

Because PHP runs as CGI, you need to set them to 755 at the highest. Any higher than that, and you will get '500' error pages.

moonlightfans · December 27th, 2007, 11:17 PM

So should they all be 755? Or some 666?

tibberous · December 28th, 2007, 11:10 AM

My site runs joomla and there all 755. I wouldn't worry about it, if your to the point where the difference between 755 and 666 matters, you got worse problems than your file permissions.

moonlightfans · December 28th, 2007, 9:14 PM

Uh-oh. What would those problems be?

tibberous · December 29th, 2007, 10:19 AM

Things like people running arbitrary code on your server, or scripts that don't validate file paths right, and let someone save an image as ../../../../.htaccess%00gay.jpg

moonlightfans · December 29th, 2007, 2:49 PM

How would I deal with this, and how do I know for sure that I have that type of problem? Sorry if I'm too general in those questions, I just want to get these problems solved.

tibberous · December 30th, 2007, 3:42 AM

It's hard to know for sure, since there are always security holes being found, not so much in Joomla but in a lot of the extensions for it.

If you have magic quotes turned on, it protects you against a lot, it automatically escapes quotes and null bytes, which is a pretty big chunk of all attacks.

moonlightfans · January 3rd, 2008, 10:47 PM

I have Magic Quotes on, thank goodness.

Does anyone here successfully use Joomla on Surpass? I'd like to know exactly what permissions they have set on their files...

December 27th, 2007, 6:35 PM	#1 (permalink)
moonlightfans Registered User Fresh Surpasser Joined in Dec 2007 8 posts Gave thanks: 0 Thanked 0 times	Joomla Hey everybody, when I transferred my Joomla site to Surpass, the chmod permissions got all screwed up. I was hoping someone here could tell me what permissions on what files worked for their Joomla site?

December 27th, 2007, 7:13 PM	#2 (permalink)
puckchaser He shoots.. He scores! Super #1 Joined in Feb 2007 Lives in A room with no windows. Hosted on SH110 1,361 posts Gave thanks: 40 Thanked 129 times	Because PHP runs as CGI, you need to set them to 755 at the highest. Any higher than that, and you will get '500' error pages. __________________ SH110

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Rate This Thread
Rate This Thread:

December 27th, 2007, 11:17 PM	#3 (permalink)
moonlightfans Registered User Fresh Surpasser Joined in Dec 2007 8 posts Gave thanks: 0 Thanked 0 times	So should they all be 755? Or some 666?

December 28th, 2007, 11:10 AM	#4 (permalink)
tibberous Registered User Seasoned Poster Joined in Oct 2007 54 posts Gave thanks: 3 Thanked 3 times	My site runs joomla and there all 755. I wouldn't worry about it, if your to the point where the difference between 755 and 666 matters, you got worse problems than your file permissions.

December 28th, 2007, 9:14 PM	#5 (permalink)
moonlightfans Registered User Fresh Surpasser Joined in Dec 2007 8 posts Gave thanks: 0 Thanked 0 times	Uh-oh. What would those problems be?

December 29th, 2007, 10:19 AM	#6 (permalink)
tibberous Registered User Seasoned Poster Joined in Oct 2007 54 posts Gave thanks: 3 Thanked 3 times	Things like people running arbitrary code on your server, or scripts that don't validate file paths right, and let someone save an image as ../../../../.htaccess%00gay.jpg

December 29th, 2007, 2:49 PM	#7 (permalink)
moonlightfans Registered User Fresh Surpasser Joined in Dec 2007 8 posts Gave thanks: 0 Thanked 0 times	How would I deal with this, and how do I know for sure that I have that type of problem? Sorry if I'm too general in those questions, I just want to get these problems solved.

December 30th, 2007, 3:42 AM	#8 (permalink)
tibberous Registered User Seasoned Poster Joined in Oct 2007 54 posts Gave thanks: 3 Thanked 3 times	It's hard to know for sure, since there are always security holes being found, not so much in Joomla but in a lot of the extensions for it. If you have magic quotes turned on, it protects you against a lot, it automatically escapes quotes and null bytes, which is a pretty big chunk of all attacks.

January 3rd, 2008, 10:47 PM	#9 (permalink)
moonlightfans Registered User Fresh Surpasser Joined in Dec 2007 8 posts Gave thanks: 0 Thanked 0 times	I have Magic Quotes on, thank goodness. Does anyone here successfully use Joomla on Surpass? I'd like to know exactly what permissions they have set on their files...

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)