How to set directory permissions in DedeCMS
How to set the DedeCMS directory permissions?
1. Directory permissions
According to statistics, most website attacks start in the root directory. Therefore, the column directory cannot be set in the root directory. .
Recommended learning: Dreamweaver cms
After DEDECMS deployment is completed, the key directory settings are as follows:
1) Delete install.
2) Set the data, templets, uploads, a or html directory to be readable and writable, and cancel the execution permissions (how does Windows set the permissions of the directory?); of course, there is a better solution for the data folder. , that is to move the data out of the root directory of the site.
3) If the website does not need special topics, the special directory must be deleted. If necessary, some netizens suggested this: After generating HTML, back up special/index.php and delete it, and then set the directory to read-write, non-executable permissions; however, this is more troublesome, because every After the first generation, you need to delete the index.php file, and you need to restore it the next time you execute "generate".
4) The include, member, plus, and background management directories are set to executable scripts, which are readable but not writable (the same is true for book, ask, company, and group directories with additional modules installed).
2. Other issues that need attention
1) Unless absolutely necessary, do not directly use the MySQL root user permissions on the website. Generally, it is the same The website corresponds to a mysql user, and the permissions are:
SELECT, INSERT , UPDATE , DELETE CREATE , DROP , INDEX , ALTER , CREATE TEMPORARY TABLES
Since DEDE does not use stored procedures anywhere, it is necessary to disable FILE, EXECUTE, etc. to perform stored procedures or file operations.
3. Always pay attention to the official website of dede and apply dede patches in time.
The following are some file permission settings
When users build a website, website security cannot be ignored. Let me share with you the security settings tutorial for each directory of DreamWeaver. for reference.
/ [Site superior directory]
If you want to use the background directory-related functions, you need to have the permission to list the directory //0444
/ [Site root directory]
Require execution and read permissions. If you want to create files and directories under the root directory, you need to have write permissions //0755
/install [Installation program directory]
Requirements Have execution and read permissions//It is recommended to delete or change the name after the installation is completed//0555
/dede [Background program directory]
Requires execution permissions and read permissions//It is recommended that the installation is completed Correct the directory name in the future //0755
/include [Main program directory]
requires write, execution and read permissions //0755 //It is recommended that after the first installation, Remove write permissions and modify permissions (temporarily enable write and modify permissions when rewriting the configuration file)//0555
/member [Member Directory]
Requires execution of read and permissions //It is recommended to remove the write permission and modification permission//0555
/plus [Plug-in Directory]
Requires read, write and execute permissions//It is recommended to generate the site map after and RSS files, remove the write permission and modification permission //0755
/data [Site cache data and other files]
Requires read permission and write modification permission//It is recommended to remove the execution Permissions //0666
/html [HTML document default directory]
requires read, modify and create permissions // It is recommended to remove the execution permissions //0666
/templets【 Template Directory】
Requires read, modify and write permissions //It is recommended to remove execution permissions//0666
/uploads 【Attachments Directory】
Requires write and read permissions //It is recommended to remove the execution permissions//0666
/company [Enterprise Yellow Pages Program Directory]
Requires read and execution permissions//It is recommended to remove the write permissions//0555
/special [Special File Directory]
Requires execution, read, write and modify permissions//0755
/book [Book Library Module Program Directory]
Requires execution , read, write and modify permissions//0755
/ask [Q&A module program directory]
Requires execution and read permissions//It is recommended to remove the write permissions//0555
/group [Circle module program directory]
Requires execution and read permissions//It is recommended to remove write permissions//0555
The above is the detailed content of How to set directory permissions in DedeCMS. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
1385
52
Where is the imperial cms resource network template?
Apr 17, 2024 am 10:00 AM
Empire CMS template download location: Official template download: https://www.phome.net/template/ Third-party template website: https://www.dedecms.com/diy/https://www.0978.com.cn /https://www.jiaocheng.com/Installation method: Download template Unzip template Upload template Select template
How dedecms implements template replacement
Apr 16, 2024 pm 12:12 PM
Template replacement can be implemented in Dedecms through the following steps: modify the global.cfg file and set the required language pack. Modify the taglib.inc.php hook file and add support for language suffix template files. Create a new template file with a language suffix and modify the required content. Clear Dedecms cache.
What website can dedecms do?
Apr 16, 2024 pm 12:24 PM
Dedecms is an open source CMS that can be used to create various types of websites, including: news websites, blogs, e-commerce websites, forums and community websites, educational websites, portals, other types of websites (such as corporate websites, personal websites, photo album websites, video sharing website)
How to upload local videos to dedecms
Apr 16, 2024 pm 12:39 PM
How to upload local videos using Dedecms? Prepare the video file in a format that is supported by Dedecms. Log in to the Dedecms management backend and create a new video category. Upload video files on the video management page, fill in the relevant information and select the video category. To embed a video while editing an article, enter the file name of the uploaded video and adjust its dimensions.
How to use dedecms
Apr 16, 2024 pm 12:15 PM
Dedecms is an open source Chinese CMS system that provides content management, template system and security protection. The specific usage includes the following steps: 1. Install Dedecms. 2. Configure the database. 3. Log in to the management interface. 4. Create content. 5. Set up the template. 6. Manage users. 7. Maintain the system.
What loopholes does dedecms have?
Aug 03, 2023 pm 03:56 PM
DedeCMS is an open source content management system that has some potential vulnerabilities and security risks: 1. SQL injection vulnerability. Attackers can perform unauthorized operations or obtain sensitive data by constructing malicious SQL query statements; 2. File Upload vulnerability, attackers can upload files containing malicious code to the server to execute arbitrary code or obtain server permissions; 3. Sensitive information leakage; 4. Unauthenticated vulnerability exploitation.
Accurate and reliable dedecms conversion tool evaluation report
Mar 12, 2024 pm 07:03 PM
Accurate and reliable dedecms conversion tool evaluation report With the rapid development of the Internet era, website construction has become one of the necessary tools for many companies and individuals. In website construction, using a content management system (CMS) can manage website content and functions more conveniently and efficiently. Among them, dedecms, as a well-known CMS system, is widely used in various website construction projects. However, sometimes we are faced with the need to convert the dedecms website to other formats, in which case we need to use a conversion tool
A simple way to learn dedecms encoding conversion function
Mar 14, 2024 pm 02:09 PM
Learning dedecms encoding conversion function is not complicated. Simple code examples can help you quickly master this skill. In dedecms, the encoding conversion function is usually used to deal with problems such as Chinese garbled characters and special characters to ensure the normal operation of the system and the accuracy of data. The following will introduce in detail how to use the encoding conversion function of dedecms, allowing you to easily cope with various encoding-related needs. 1.UTF-8 to GBK In dedecms, if you need to convert UTF-8 encoded string to G
