Joomla File Permissions Question
Hello Experts,
I have been told that make the Directory Permissions in Joomla writable (see attachment) I have to get in touch with the ISP that is hosting my web site and request that they enable file permissions.
Is that correct?
Cheers
patte
hosting.PNG
I have been told that make the Directory Permissions in Joomla writable (see attachment) I have to get in touch with the ISP that is hosting my web site and request that they enable file permissions.
Is that correct?
Cheers
patte
hosting.PNG
Steve Bink
Even with shared hosting, you're probably able to modify the permissions in your directories, but it really depends on the host. You can certainly contact your hosting provider for assistance with it, though.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Update & Caution: this above method also work for changing permissions for individual files. but proceed with caution when changing permissions as it may threaten security of your website, so do it only when it is necessary and not at random.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
@Steve Thanks for pointing out the security risk.
I did post the Caution note... but I did not elaborate it ... next time I will keep that in mind.
Most probably he must be getting the write permission error when he is trying to install some new extension.
he can change settings, install whatever and again change permissions to original... (I am not saying he do it... I am expressing my views here)
I posted the above detailed example only so that Cpatte understands that he CAN CHANGE IT ON HIS OWN... showing it does not mean I wish him to land in trouble.
as per my experience in Joomla sites, if you keep the site updated, dont install unknown or untested extensions... host your site on a good reputed host, there is no need to worry.
and that way nobody is safe :) even big sites employing a dozen security experts get hacked.
you cannot learn to swim unless you jump in the water is what I believe in.
I did post the Caution note... but I did not elaborate it ... next time I will keep that in mind.
Most probably he must be getting the write permission error when he is trying to install some new extension.
he can change settings, install whatever and again change permissions to original... (I am not saying he do it... I am expressing my views here)
I posted the above detailed example only so that Cpatte understands that he CAN CHANGE IT ON HIS OWN... showing it does not mean I wish him to land in trouble.
as per my experience in Joomla sites, if you keep the site updated, dont install unknown or untested extensions... host your site on a good reputed host, there is no need to worry.
and that way nobody is safe :) even big sites employing a dozen security experts get hacked.
you cannot learn to swim unless you jump in the water is what I believe in.
@Prasadh Baapaat: the focus of my warning was setting world writable or world executable on anything in the site's directory tree. Besides that issue, your instructions (in the context of cPanel) are fine.
And I certainly wasn't trying to imply you recommended a dangerous solution on purpose. My warning was forceful because inexperienced admins will typically go for the "path of least resistance", not realizing the dangers lying in wait.
OP absolutely needs to adjust permissions on his site, and (assuming s/he has cPanel) your instructions will guide in that effort. However, it is very likely that only user write permission is necessary, and anything over that just exposes more surface area.
And I certainly wasn't trying to imply you recommended a dangerous solution on purpose. My warning was forceful because inexperienced admins will typically go for the "path of least resistance", not realizing the dangers lying in wait.
OP absolutely needs to adjust permissions on his site, and (assuming s/he has cPanel) your instructions will guide in that effort. However, it is very likely that only user write permission is necessary, and anything over that just exposes more surface area.
Agreed :)