Hey all,
I'm developing a system that needs to read and write files in a subfolder.
Fread(), fwrite() and move_uploaded_file() are the commands most commonly
used. My problem is that files will only be accessed if I chmod the
subfolder to 777. No safer level of security works, unless I chown folder
and set its ownership to nobody (the Apache user).
I'm developing the system for people to use without access to a shell, and
they may have Apache running with a user other than 'nobody'. Is it safe to
leave the folder with 777 (it contains PHP scripts), or is there another
solution?
Cheers.
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.732 / Virus Database: 486 - Release Date: 29/07/2004