2007-11-08, 03:18 AM
Hi, I was wondering if there was any danger to having the MyBB files all set to mode 777 on a linux box. I don't have any other users on the box itself, so I assume that only www-data ( my apache user ) is the only one accessing the MyBB files.
I was wondering if perhaps I should at least take off read permissions on some files, so that webcralwers could not just download something like my config.php, but www-data would still be able to execute. Does this seem safe?
I've already changed my admin dir and changed the table prefeix in my databases, so I think I've done all the hardening I can, but I was just a little concerned over the wide-open permissions.
I was wondering if perhaps I should at least take off read permissions on some files, so that webcralwers could not just download something like my config.php, but www-data would still be able to execute. Does this seem safe?
I've already changed my admin dir and changed the table prefeix in my databases, so I think I've done all the hardening I can, but I was just a little concerned over the wide-open permissions.