PCI Compliant Server makes file uploads to file manager not work
Permalink
After a PCI Compliance check, a client's website was recently identified as having some non compliant issues. The site was upgraded to a Compliant server running the latest versions of php and only accessible by sftp. While the site meets PCI standards now, the site is locked down so much that assets/files cannot be uploaded into the file manager. I'm seeking a solution that will make the file manager work again.
Error Message: Unable to copy file to storage directory. Please check permissions on your upload directory and ensure they can be written to by your web server.
# concrete5 Version
5.6.2.1
# concrete5 Packages
eCommerce (2.8.12), eCommerce - Local Pickup (1.1.1), eCommerce - UPS Shipping (1.5.8), Sortable Fancybox Gallery (1.17).
# concrete5 Overrides
themes/samco
# Server Software
Apache
# Server API
cgi-fcgi
# PHP Version
5.5.24
# PHP Extensions
bcmath, bz2, calendar, cgi-fcgi, Core, ctype, curl, date, dba, dom, ereg, exif, fileinfo, filter, ftp, gd, gettext, gmp, hash, iconv, imap, ionCube Loader, json, ldap, libxml, mbstring, mcrypt, mhash, mysql, mysqli, odbc, openssl, pcntl, pcre, PDO, pdo_dblib, pdo_mysql, PDO_ODBC, pdo_pgsql, pdo_sqlite, pgsql, Phar, posix, readline, Reflection, session, shmop, SimpleXML, snmp, soap, sockets, SPL, sqlite3, standard, sysvmsg, sysvsem, sysvshm, tokenizer, wddx, xml, xmlreader, xmlrpc, xmlwriter, xsl, zip, zlib.
# PHP Settings
max_execution_time - 30
log_errors_max_len - 1024
max_file_uploads - 20
max_input_nesting_level - 64
max_input_time - -1
max_input_vars - 1000
memory_limit - 250M
post_max_size - 25M
sql.safe_mode - Off
upload_max_filesize - 60M
ldap.max_links - Unlimited
mysql.max_links - Unlimited
mysql.max_persistent - Unlimited
mysqli.max_links - Unlimited
mysqli.max_persistent - Unlimited
odbc.max_links - Unlimited
odbc.max_persistent - Unlimited
pcre.backtrack_limit - 1000000
pcre.recursion_limit - 100000
pgsql.max_links - Unlimited
pgsql.max_persistent - Unlimited
session.cache_limiter - nocache
session.gc_maxlifetime - 7200
soap.wsdl_cache_limit - 5
# concrete5 Version
5.6.2.1
# concrete5 Packages
eCommerce (2.8.12), eCommerce - Local Pickup (1.1.1), eCommerce - UPS Shipping (1.5.8), Sortable Fancybox Gallery (1.17).
# concrete5 Overrides
themes/samco
# Server Software
Apache
# Server API
cgi-fcgi
# PHP Version
5.5.24
# PHP Extensions
bcmath, bz2, calendar, cgi-fcgi, Core, ctype, curl, date, dba, dom, ereg, exif, fileinfo, filter, ftp, gd, gettext, gmp, hash, iconv, imap, ionCube Loader, json, ldap, libxml, mbstring, mcrypt, mhash, mysql, mysqli, odbc, openssl, pcntl, pcre, PDO, pdo_dblib, pdo_mysql, PDO_ODBC, pdo_pgsql, pdo_sqlite, pgsql, Phar, posix, readline, Reflection, session, shmop, SimpleXML, snmp, soap, sockets, SPL, sqlite3, standard, sysvmsg, sysvsem, sysvshm, tokenizer, wddx, xml, xmlreader, xmlrpc, xmlwriter, xsl, zip, zlib.
# PHP Settings
max_execution_time - 30
log_errors_max_len - 1024
max_file_uploads - 20
max_input_nesting_level - 64
max_input_time - -1
max_input_vars - 1000
memory_limit - 250M
post_max_size - 25M
sql.safe_mode - Off
upload_max_filesize - 60M
ldap.max_links - Unlimited
mysql.max_links - Unlimited
mysql.max_persistent - Unlimited
mysqli.max_links - Unlimited
mysqli.max_persistent - Unlimited
odbc.max_links - Unlimited
odbc.max_persistent - Unlimited
pcre.backtrack_limit - 1000000
pcre.recursion_limit - 100000
pgsql.max_links - Unlimited
pgsql.max_persistent - Unlimited
session.cache_limiter - nocache
session.gc_maxlifetime - 7200
soap.wsdl_cache_limit - 5
are you able to chmod /files and all subdirectories to 777 - does that allow you to upload files?
Yes...permissions set recursively to 777 ... see screenshot
what version of C5 are you running and what happens / are you receiving any error messages in your logs when you try abd upload files?