2008-04-12, 11:08 PM
Someone hacked my MYBB forum through the avatar and upload folder.
I would like it so that I can have an avatar and others can't upload anything.
I tried the 666 settings like suggested in the docs, but it will not display my avatar for some reason for everyone.
I tried just uploading it and setting both folders to 555 and that seems to work. I just want to make sure the 555 is secure and that nobody can upload to those folders. Should I add a .htaccess file?
I tried the remote avatar with my same avatar that works and nothing happens.
Any help would be appreciated.
I would like it so that I can have an avatar and others can't upload anything.
I tried the 666 settings like suggested in the docs, but it will not display my avatar for some reason for everyone.
I tried just uploading it and setting both folders to 555 and that seems to work. I just want to make sure the 555 is secure and that nobody can upload to those folders. Should I add a .htaccess file?
I tried the remote avatar with my same avatar that works and nothing happens.
Any help would be appreciated.