tags:

views:

88

answers:

1
Q: 

file permissions messed the site! what is the best permission? 644? 744?

Hi friends,

just messed the websites at host by changing permission settings :( none of sites are working now!!! it gives

Forbidden

You don't have permission to access / on this server.

error! how can i fix it?! should i make files' permissions as 644?

thanks!!!

+2  A: 

I think that 755 should do.

Basically, you shouldn't grant write permissions for any file/directory to anybody but yourself (the owner), except for dirs/files which are explicitly required by a particular website/framework to be writable. A common example would be a directory for uploading avatars by users of a forum application.

What matters is that you most probably need the 5 for others (hence, you might try 705 and it still could work) to grant execute access for foreign users. While it might not make sense to set +x for all your website's files, the directories use the execute right to check whether the user is allowed to enter that directory. If you set the rights of everything (including directories) to 644/744, nobody except the owner will be able to browse the directory structure of particular folders. As the http daemon hardly ever is run as the directory owner's process, it might be the reason why your website stopped working.

Neo  2010-02-15 15:11:35
thanks for reply so much!! is 755 safe enough for any files at host? I stupidly have changed all files' permissions including system, cgi-bin, etc... :( is there any particular file needs particular permission setting?
artmania  2010-02-15 15:19:48
i just made all files as 744, and still not working, still Forbidden error! :(
artmania  2010-02-15 15:20:39
just set 705 and working fine!! I appreciate so much !!! do you think is 705 safe for any files/folder?
artmania  2010-02-15 15:28:01
`chmod -R 744 /` ? I'd agree it was "stupidly" done ;) What I would recommend is setting 755 for `/usr/bin` and `/usr/local/bin`. After this (assuming you set 744 for everything) enter your website directory (the root directory of all websites) and set 755 for subdirectories only - `find . -type d -exec chmod 755 {} \;`
Neo  2010-02-15 15:53:05

related questions

Can't copy file with appropriate permissions using FileIOPermission
GetProcessesByName() and Windows Server 2003 scheduled task
Starting a process in C# with username & password throws "Access is Denied" exception
How do you set directory permissions in NSIS?
PHP: How to check if a directory is writeable?
Sharepoint Item Level Access & performance
sudo echo "something" >> /etc/privilegedFile doesn't work... is there an alternative?
What is the best way to create a security architecture?
Hierarchical Group Permissions Theory/Resources?
Why is access denied when installing SSL cert on IIS 5?
What databases do I have permissions on
Can an iPhone App Be Run as Root?
SQLite/PHP read-only?
Multiple permission types (roles) stored in database as single decimal
SharePoint Permissions
CakePHP ACL Database Setup: ARO / ACO structure?
LINQ and Database Permissions
What's the best way to implement a SQL script that will grant select, references, insert, update, and delete permissions to a database role on all the user tables in a database?
php scripts writing to non-world-writable files
How do I detect if a function is available during JNLP execution?
Implementing permissions in PHP
Access Control Lists & Access Control Objects, good tutorial?
In Visual Studio you must be a member of Debug Users or Administrators to start debugging. What if you are but it doesn't work?
Where should I put my log file for an asp.net application?
What is the best way to handle multiple permission types?