security security
 

News:

CPG Release 1.6.26
Correct PHP8.2 issues with user and language managers.
Additional fixes for PHP 8.2
Correct PHP8 error with SMF 2.0 bridge.
Correct IPTC supplimental category parsing.
Download and info HERE

Main Menu

security

Started by dmcdivitt, January 12, 2007, 10:53:25 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

dmcdivitt

I just installed Coppermine. Really cool! In the setup documentation it said to place the Coppermine directory off the htdocs directory and CHMOD all permissions to 777. I did that. Is it safe to leave it that way? Did the setup script address this issue? Thanks for making such a good application.

Nibbler

It doesn't say to set everything to 777. You set specific folders to either 777 or to 775 depending on how your server is configured.

dmcdivitt

Everything has 777 now. Do I need to change it? To what value? Thanks

eruss

Quote from: dmcdivitt on January 12, 2007, 11:07:20 PM
Everything has 777 now. Do I need to change it? To what value? Thanks


It's in the instruction manual, aka "the docs".  755 is more secure if it works on your server.

http://coppermine-gallery.net/demo/cpg14x/docs/index.htm#how

dmcdivitt

Thanks! I read the docs and 755 works on all files and folders OK. Boy, it was a pain doing all the research necessary to get uploads working. So much trial and error! Found a default php.ini to use.

About the files created at setup. Should those be protected with .htaccess so they can't be accessed via http?

Joachim Müller