Topic Closed
geckojsc
2 Posts

Using PHP to write into a read-write-execute for all users (777) folder is a security risk, and also it is impossible to manage files via an FTP client if PHP is not running as your user (which is likely especially on a shared server). I love gpEasy - it is my first choice when somebody asks me to make a website for them. It would be great however, if before installation gpEasy could suggest that you provide FTP login details if the folder is not 777 (and then store them in a safe place). This way the files could instead be managed with PHP's built-in FTP functions, so the site would be safe from unauthorized access and would be fully usable with an FTP client.

10 years ago#866

Charles S
448 Posts
13.7K Downloads
2 Themes
8 Plugins

I'm not sure what you are getting at. My gpEasy install on my server is 755. gpEasy doesn't change your folder permissions to 777. Are you seeing that it changed your folder permissions to 777?

I work with my server install via FTP client. . . I only use the server install once in a while to check for possible bugs in new gpEasy revisions. . . otherwise it's FTP sync with WinSCP.

What am I missing?

10 years ago#867

Topic Closed

 

News

elFinder 2.1.50 in Upcoming Release
12/28/2019

A new release for Typesetter is in the works with a lot of improvements including the ... Read More

Typesetter 5.1
8/12/2017

Typesetter 5.1 is now available for download. 5.1 includes bug fixes, UI/UX improvements, ... Read More

More News

creisi productions

Dienstleistungen von creisi productions, Luzern (Schweiz): * Konzeption, Planung und Erstellung Ihres Internet-Auftritts * Betreuung und Aktualisierung/Pflege Ihrer Website * ...

Find out more about our Provider Spotlight

Log In

  Register