Hello. We started doing web design and hosting about a year ago. I have a customer who wants to be able to access content directly to update text. A consultant found TDE Web Editior which allows a user to log in to a CMS type of backend (http://www.topdreamweaverextensions.com/website-editor
Up until now, I have tried to keep our webserver very secure (as secure as it can be anyways). As for permissions on each site, view contents is it. But it looks like for this to work, I need to allow:
Execute Permissions - Scripts Only
And Browse Directory.
At least that's the only way we've gotten it to work so far.
Does this pose a security risk? Any experts care to comment?