Originally posted by The Loon
View Post
Announcement
Collapse
No announcement yet.
Disabling Indexes
Collapse
X
-
-
Originally posted by drummerboy View PostWhich one would you recommend?
Comment
-
..
Personally I would not recommend chmod of 777 to anything.. Some will tell you other wise to defend their honor but I know from experience and from research performed by myself and a large contributer of phpbb communities. On shared hosting chmoding 777 perms open doors to those unwanted visitors who like to leave a "I got ya" message on your index home page and then insert some php port monitoring.. If you havent guessed already I speak from experience.. Took me about 6 hits before I and another programmer figured out how it was happening.. It all happened via 777 perms.. I was hot target for a while and now Im going on like 8 months with no attacks since I fixed the issues.. It wasnt just a situation of chance that the attacks stopped either because they were coming in like clock work. Nor was it just phpbb because domains with no php files even in it were being hit as well. Now this doesnt mean that when you chmod something to 777 that you are going to have any troubles.. I just always suggest to have a recent back up of all your sql data and server side files. Your hosting company can not always locate a good back up for your site.. #$%$# happens.
Now back more to the topic. For the one who mentioned they are redirected to the main page when trying to directory browse. That is done like someone said via a simple redirect.. This can be done with some javascript.. If someone has it turned off though I rather use the meta refresh instead. Thing is I have hundreds of directories so I just use the blank index. Also I would use the html indexes instead of php.index files.. I have actually seen some browsers pass up a php index file before under certain circumstances.Last edited by Wicked; 24-05-2007, 06:51 AM.
Comment
-
Originally posted by Wicked View PostPersonally I would not recommend chmod of 777 to anything.. Some will tell you other wise to defend their honor but I know from experience and from research performed by myself and a large contributer of phpbb communities. On shared hosting chmoding 777 perms open doors to those unwanted visitors who like to leave a "I got ya" message on your index home page and then insert some php port monitoring.. If you havent guessed already I speak from experience.. Took me about 6 hits before I and another programmer figured out how it was happening.. It all happened via 777 perms.. I was hot target for a while and now Im going on like 8 months with no attacks since I fixed the issues.. It wasnt just a situation of chance that the attacks stopped either because they were coming in like clock work. Nor was it just phpbb because domains with no php files even in it were being hit as well. Now this doesnt mean that when you chmod something to 777 that you are going to have any troubles.. I just always suggest to have a recent back up of all your sql data and server side files. Your hosting company can not always locate a good back up for your site.. #$%$# happens.
Now back more to the topic. For the one who mentioned they are redirected to the main page when trying to directory browse. That is done like someone said via a simple redirect.. This can be done with some javascript.. If someone has it turned off though I rather use the meta refresh instead. Thing is I have hundreds of directories so I just use the blank index. Also I would use the html indexes instead of php.index files.. I have actually seen some browsers pass up a php index file before under certain circumstances.
Comment
Comment