Ellis
Reputation: 328
PHP/Apache2 Production web permissions and ownership
I was always curious what is the best practice for production web pages ran by Apache2 and PHP of folder ownerships and permissions.
Lets say /srv/www/my-web is a public folder accessed via http.
How the ownership and permissions should be set to be as restrictive as possible?
My example would be:
drwxr-xr-x my-user:www-data /srv/www/my-web
-rw-r--r-- my-user:www-data /srv/www/my-web/index.php
drwxrwxr-x my-user:www-data /srv/www/my-web/cache
-rw-rw-r-- my-user:www-data /srv/www/my-web/auto-generated-file.php
Upvotes: 2
Views: 447
Answers (1)
Joe Conlin
Reputation: 5994
Typically:
Folders: 755 or rwxr-xr-x
Files: 644 or rw-r--r--
find /[webroot] -type d -exec chmod 755 {} \; //set all directories to 755
find /[webroot] -type f -exec chmod 644 {} \; // set all files to 644
Upvotes: 3
Related Questions
- Owner of the uploaded files Apache web server
- Giving Ownership/Rights properly on Ubuntu/Linux
- Apache file ownership / group
- Linux (ubuntu) permissions for webapp - UNIQUE SITUATION
- PHP file permissions for Development machine
- PHP mkdir and apache ownership
- php mkdir() and apache ownership issue
- PHP permission handling
- Apache+PHP write permissions on unix
- Allowing PHP to change file and directory ownership and permission