Blog Documentation Try Vanilla Cloud
Vanilla 1 is no longer supported or maintained. If you need a copy, you can get it here.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

CHMOD for each folder in Vanilla

loolylooly
edited May 2007 in Vanilla 1.0 Help
I got owned by someone called "Karaseytan" because of my CHMOD in Uploads folder and i forgot to remove /setup and that opened my eyes that bein' careless could be harmful... anyways I'd like to know recommended CHMOD for each folder and file so i can set it up and atleast rest for a while without havin' to worry about anyone like him

Comments

  • lechlech Chicagoland
    not sure what you had your chmod settings at prior to that attack, but typically the only folder which you would need to proper chmod to give Vanilla access is the /conf/ folder to 0777 (0775 idealy) durring the installation. All other folders should be at the default 0755 permissions or an equivalent depending on the server. After setting up successfully you should remove the /setup/ folder and it's contents.
  • loolylooly
    ok i guess i'll be good
  • lechlech Chicagoland
    After the initial setup, providing you're not installing any extra add-ons or making significant changes you can also bring down the chmod settings of the /conf/ folder back to normal (0755). Vanilla should still be able to write to the configuration files as needed depending on your server setup but lowering that permission shouldn't make things executable afterwards. Just remember to bring up the permissions again should you need to.
This discussion has been closed.