1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 9:18 am May 2, 2026

Forum Moderators: coopster

Message Too Old, No Replies

Directory Permissions when managing files in PHP

         

ryan_b83

3:59 pm on Feb 17, 2007 (gmt 0)

10+ Year Member



I am some scripts that allow users to upload images. However in order to make it work i have to change the permissions of the directory to 777, is this not secure? Is there a better way?

Thanks,
Ryan

mcavic

4:11 pm on Feb 17, 2007 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



You can set the owner of the directory to the user that the Web server is running as: nobody, apache, or httpd. On some systems you have to be root to make that change, so the workaround for that would be to remove the directory, set the parent directory to 777 temporarily, then re-create the images directory using PHP.

It's still not completely secure, because other Web sites on the server would have write access. But it's the best easy way.

coopster

12:54 am on Feb 19, 2007 (gmt 0)

WebmasterWorld Administrator 10+ Year Member



A past discussion that may be of interest:

security / performance tradeoff in image uploads [webmasterworld.com]

 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 9:18 am May 2, 2026