Re: Error: Permision deny.

This WebDNA talk-list message is from

2005


It keeps the original formatting.
numero = 62976
interpreted = N
texte = 660 is probably ideal for you. The general idea is the least amount of permissions needed to operate is the most secure you can be. Apache and WebDNA need to operate as the user www or httpd (depending on your distribution of Linux). Then, just to make things confusing, there is also a group called httpd or www. Your user needs to be a part of that group to r/w to those files. Here are some useful commands that one should read about and understand before using: ls -al (this will show the current directory with permissions and owners) chown (this will allow one to change the ownership) chmod (this will modify the permissions) chgrp (this will allow one to add a user to a group) Try man ls or man chown to read more about the commands before using them. I also recommend having a few good books on unix or linux. Bill On Sep 9, 2005, at 1:59 AM, Frank Nordberg wrote: > William DeVaul wrote: >> 666 is textbook insecure. > > Yes, but I think the general idea is to allow visitors to both access > and add to/modify the data through WebDNA so there's gotta be a 6 > there somewhere. Question is where does WebDNA fit in? owner? group? > world? > > Who is this group anyway? I thought that parameter wasn't really > relevant at all for a reguar public web site. > >> The bits are given for read(4)/write(2)/execute(1). > > Thanks, I'll try to remember it now. I think the reason why I have to > look it up every time is that the system seems to be the opposite of > what one would intuively expect: "read" (the least intrusive action) > for the lowest bit and "execute" (the riskiest one) for the highest. > > > Frank Nordberg ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Fw: Re: Error: Permision deny. ( nitai@computeroil.com 2005)
  2. Re: Error: Permision deny. ( Thierry Almy 2005)
  3. Re: Error: Permision deny. ( Thierry Almy 2005)
  4. Re: Error: Permision deny. ( William DeVaul 2005)
  5. Re: Error: Permision deny. ( Kenneth Grome 2005)
  6. Re: Error: Permision deny. ( William DeVaul 2005)
  7. Re: Error: Permision deny. ( Thierry Almy 2005)
  8. Re: Error: Permision deny. ( Frank Nordberg 2005)
  9. Re: Error: Permision deny. ( Donovan Brooke 2005)
  10. Re: Error: Permision deny. ( William DeVaul 2005)
  11. Re: Error: Permision deny. ( Frank Nordberg 2005)
  12. Error: Permision deny. ( Kenneth Grome 2005)
  13. Re: Error: Permision deny. Unable to append to 'db=^WebMerchant/Stores.db' .Ignoring [Append] context (Le Pham 2002)
  14. Re: Error: Permision deny. Unable to append to 'db=^WebMerchant/Stores.db' .Ignoring [Append] context (Clayton Randall 2002)
  15. Re: Error: Permision deny. Unable to append to (Alain Russell 2002)
660 is probably ideal for you. The general idea is the least amount of permissions needed to operate is the most secure you can be. Apache and WebDNA need to operate as the user www or httpd (depending on your distribution of Linux). Then, just to make things confusing, there is also a group called httpd or www. Your user needs to be a part of that group to r/w to those files. Here are some useful commands that one should read about and understand before using: ls -al (this will show the current directory with permissions and owners) chown (this will allow one to change the ownership) chmod (this will modify the permissions) chgrp (this will allow one to add a user to a group) Try man ls or man chown to read more about the commands before using them. I also recommend having a few good books on unix or linux. Bill On Sep 9, 2005, at 1:59 AM, Frank Nordberg wrote: > William DeVaul wrote: >> 666 is textbook insecure. > > Yes, but I think the general idea is to allow visitors to both access > and add to/modify the data through WebDNA so there's gotta be a 6 > there somewhere. Question is where does WebDNA fit in? owner? group? > world? > > Who is this group anyway? I thought that parameter wasn't really > relevant at all for a reguar public web site. > >> The bits are given for read(4)/write(2)/execute(1). > > Thanks, I'll try to remember it now. I think the reason why I have to > look it up every time is that the system seems to be the opposite of > what one would intuively expect: "read" (the least intrusive action) > for the lowest bit and "execute" (the riskiest one) for the highest. > > > Frank Nordberg ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ William DeVaul

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Emailer Problem (1999) Checking Webdna is running (2007) WebCat2 beta 11 - new prefs ... (1997) Trouble with formula.db (1997) ConvertChars request (1999) (OT) Dual 2GHz G5 (2003) setting cookies for another domain? (2002) http://www.smithmicro.com/WebDNAReference/ current? (2000) Need relative path explanation (1997) Adding more than one item and QTY to cart (2000) SHOWIF/HIDEIF empty fields (2005) Formatting date to number (2000) WebCat virtual postcard is done! Thanks for the help! (1998) Searching for all records (1998) Help!!!! (1997) New public beta available (1997) Webstar and WebCatalog (1999) WebCat2b13MacPlugin - [math][date][/math] problem (1997) latest version? (1998) Wanted: Broader string manipulation functions (1997)