Hi

I am beginning to look at understanding how to fully protect the site. And so I went to the faq to look for information on file protection. When I set the site up I had to chmod to 777 for all files which I duly did and then after installation removed the installation directory and chmod one file to 444. Is this ok or should I chmod all files to 444?

For your information under this url:-

https://xoops.org/modules/smartfaq/faq.php?faqid=82

we get this comment:-

There are several basic steps outlined elsewhere in these FAQs, such as correct use of file/folder permissions, htaccess, index redirects, rejection of uploading unsafe mime-types and regular backups. It is also good policy to use your groups system to filter users, allowing extended priviledges only to trusted members.

Would it be possible to put a link to the various answers that are raised?

Thanks

Rich

Rich,

You may have noticed that several other FAQs have cross reference to other FAQs. Unfortunately the module does not provide for automatic listing of related FAQs (yet!) I have put this on the features request.

Currently we have to scan, match and C/R on a manual basis. Thanks for bringing this one to my attention and I will do this one next

Thanks Carnuke

Hope you enjoyed the holidays.

Rich

Rich,

Just a follow up from your suggestion to link the security related FAQs together. I have now cross referenced all existing security FAQs Starting with this one

How safe will my XOOPS website be?

If anyone would like to add some basic information about using .htaccess files for security purposes ... please add an FAQ