File Permissions Checking Add-on?
Permalink
Aloha all!
I have come across a couple of C5 sites which have been hacked, evidently due to poor file permissions (which is of no fault of Concrete5). I was wondering if there are any add-ons or security auditing tools which make it easy to check the entire Concrete5 installation to ensure that the file permissions are solid. Anybody know of such a thing or should I write it myself?
Thanks in advance!
Cheers,
Alex
I have come across a couple of C5 sites which have been hacked, evidently due to poor file permissions (which is of no fault of Concrete5). I was wondering if there are any add-ons or security auditing tools which make it easy to check the entire Concrete5 installation to ensure that the file permissions are solid. Anybody know of such a thing or should I write it myself?
Thanks in advance!
Cheers,
Alex
Thanks for the reply John-Paul,
Yes - I'm quite familiar with how to do this via the command line, but it just seemed like it would be super handy to have an add-on (in case SSH is not available for example) which will check this for you automatically and was thinking that something might exist.
I'll take this as a challenge to create an add-on. ;-)
Cheers,
Alex
Yes - I'm quite familiar with how to do this via the command line, but it just seemed like it would be super handy to have an add-on (in case SSH is not available for example) which will check this for you automatically and was thinking that something might exist.
I'll take this as a challenge to create an add-on. ;-)
Cheers,
Alex
yes please, make it an add-on :)
If you can SSH into your server, you can use commands to update file permissions.
Here is a link to a cPanel article that covers this.
http://forums.cpanel.net/f34/change-folders-subfolders-permission-1...
I hope this helps,
-John-Paul