Hi. All the problems I am having seem to be connected to permissions. Can someone tell me what the permissions are suppose to be for everything to work properly? What files and or folders need to be what in order for the members to be able to signup and upload images and music etc. without being able to hack my account again? For the most part, the answer to every question I have posted has been, "check your permisions". Boonex does not seem to have an area that explains this. Please help. Thank you.
|
When you do an install, the system lists all the permissions you have to change to make it work. Is your system operational now? - i.e. do you have members, or are you still working on configuration?
Rob
|
No, it's not new, my install was completed some time ago. I have test members. I also have ongoing errors that all lead back to permissions. I set all the permissions to what the install said to set them to, but they must not be correct. Supposedly it was permissions that allowed them to hack my computer, it is permissions that keeps me from uploading images to groups, it is permissions that keep me from being able to post forums. So, what do I set what to? 644, 666, 755, 777? Everytime someone says. ,"file so & so needs to be set to what ever", I go check it and that is what it is set to. Still my problems persist. That is why I am looking for some master list so I can go check them all at once instead of one file at a time as read the posts I get. Thanks for your time and help.
|
Sorry, this is beyond my ability- maybe someone else here can help? I agree that a master permissions list would be helpful, but it also sounds like it would be a real pain to go through all those files one-by-one. Not what you want to hear, but maybe a fresh install would be best. I know that even test data takes al long time to make, so before you do I would do both a database structure and content backup, and backup as many of the tables as you can to your local drive. After you do the reinstall, immediately do another backup- then put the other backup files in the backup directory. Then do a restore from the full structure/content backup file. If this carries over the errors you had previously (which can happen) then go back to the original backup you did with the fresh install then start adding your backup tables one by one. Pain in the ass, but you should be able to get back to where you were fairly quickly- hopefully with no errors this time. This is the best I can come up with- maybe someone else here has a better approach.
Rob
|
Check to make sure the /cache is 777 .....
. |
Thanks guys. I'll keep looking for the problem. Oh and my /cache is set to 777. lol. See what I mean. :) |
I am new at this so I will tell you what I have learned so far. My site was installed by my host and ran fine for a couple of weeks. After that I got hacked about three times in a row with no members. After speaking with host I was able to login to cpanel for my site account. I went to view all public folder permissions. I change anything that was 777 to 755. After another issue I faced a rumpybumpy helped me fix it by notifying me that cache has to be 777. none of my other public folders are set to 777. I hope that this helps. I had to restore my site to original install and change permissions as soon as it was back up. |
Master list is here:
http://www.boonex.com/trac/dolphin/wiki/DetailedInstall it's setup so you can copy paste into ssh so heres a copy to check by eye. After you kind of learn it you can load up the install folder and quickly see whats out by calling /install/index.php
chmod 777
./backup
./cache
./tmp
./langs
./groups/gallery
./groups/orca/cachejs
./groups/orca/classes
./groups/orca/js
./groups/orca/layout
./groups/orca/log
./media/images
./media/images/banners
./media/images/blog
./media/images/classifieds
./media/images/gallery
./media/images/profile
./media/images/profile_bg
./media/images/promo
./media/images/promo/original
./media/images/sdating
./media/images/sharingImages
./media/sound
./media/video
./orca/cachejs
./orca/classes
./orca/conf
./orca/js
./orca/layout
./orca/log
chmod 777
./ray/modules/board/files
./ray/modules/chat/files
./ray/modules/im/files
./ray/modules/movie/files
./ray/modules/mp3/files
./ray/modules/music/files
./ray/modules/global/app/ffmpeg.exe
chmod 666
./inc/db_cached/MenuContent.inc
./inc/db_cached/PageView.inc
./inc/db_cached/ProfileFields.inc
./inc/db_cached/SiteStat.inc
./inc/params.inc.php
./inc/prof.inc.php
./ray/modules/board/xml/config.xml
./ray/modules/board/xml/langs.xml
./ray/modules/board/xml/main.xml
./ray/modules/board/xml/skins.xml
./ray/modules/chat/xml/config.xml
./ray/modules/chat/xml/langs.xml
./ray/modules/chat/xml/main.xml
./ray/modules/chat/xml/skins.xml
./ray/modules/desktop/xml/config.xml
./ray/modules/desktop/xml/langs.xml
./ray/modules/desktop/xml/main.xml
./ray/modules/desktop/xml/skins.xml
./ray/modules/global/data/integration.dat
./ray/modules/global/inc/cron.inc.php
./ray/modules/global/inc/header.inc.php
./ray/modules/global/xml/config.xml
./ray/modules/global/xml/main.xml
./ray/modules/im/xml/config.xml
./ray/modules/im/xml/langs.xml
./ray/modules/im/xml/main.xml
./ray/modules/im/xml/skins.xml
./ray/modules/movie/xml/config.xml
./ray/modules/movie/xml/langs.xml
./ray/modules/movie/xml/main.xml
./ray/modules/movie/xml/skins.xml
./ray/modules/mp3/xml/config.xml
./ray/modules/mp3/xml/langs.xml
./ray/modules/mp3/xml/main.xml
./ray/modules/mp3/xml/skins.xml
./ray/modules/music/xml/config.xml
./ray/modules/music/xml/langs.xml
./ray/modules/music/xml/main.xml
./ray/modules/music/xml/skins.xml
./ray/modules/presence/xml/config.xml
./ray/modules/presence/xml/langs.xml
./ray/modules/presence/xml/main.xml
./ray/modules/presence/xml/skins.xml
./ray/modules/shoutbox/xml/config.xml
./ray/modules/shoutbox/xml/langs.xml
./ray/modules/shoutbox/xml/main.xml
./ray/modules/shoutbox/xml/skins.xml
./ray/modules/video/xml/config.xml
./ray/modules/video/xml/langs.xml
./ray/modules/video/xml/main.xml
./ray/modules/video/xml/skins.xml
I have video tutorials to help you mrpowless.com |
Man, I can't thank you enough. Just to be sure, my site will still be secure with so many files set to 777 and 666. The reason I ask is everyone keeps telling me they should be set to 644 and 755. I don't doubt you, I just don't want to mess up because I was already hacked once. I will let everyone know when I find the problem. Thanks again. |
This is what HFW responded to the question of setting the folders to 777. I trust you more than them, as you have the direct experience with the software and it makes since to me why they would need to be set to 777. I just worry because I understand their what they are saying also and I was already hacked once. Please tell me it's going to be OK. :) Thanks for the help
Hello,
777 permissions means a hacker can pretty much exploit the directory at will and use it to upload files such as spamming sripts.
|
