December 22nd, 2013, 02:01 AM
Is it ok to keep the public directory 777?
I get users to upload the photos for their products to a directory like http://www.site.com/uploads
The permissions for uploads directory is 777.
I keep it that way so they can upload files there.
Is it safe? Do I kneed to change it so it's secure?
December 22nd, 2013, 05:50 AM
777 is never secure. And I wonder why you think you need it. Only the webserver needs full access to the folder, so you set it as the owner and then set the permissions to something like 755.
December 23rd, 2013, 12:47 AM
777 sets full permissions to the folder. So setting it to 777 can lead to high security risk.