Archived Boards and Threads... > Parham's PHP Tutorials

Why chmod 777 is NOT a security risk

<< < (19/21) > >>

taha116:

--- Quote from: Killer Possum on December 30, 2008, 05:31:28 PM ---
--- Quote from: taha116 on December 30, 2008, 12:43:48 PM ---So its just as easy to hack my 1.1.7 site as it would be to hack this SMF community site? I don't believe that, because if people report getting hacked then why dosent some whacko just hack this too? Their are obviously some differences that you have not considered?

--- End quote ---

The differences are in the configuration of the server as well. Just because site A gets their forum hacked doesn't mean site B can be hacked in the same way. Basically, just because your forum was hacked and destroyed doesn't necessarily mean that they got in through the forum software.

--- End quote ---

Ahh so basicly if I were to install SMF 1.1.7 using all recomended settings and nothing else I should be as safe as this site itself?

IchBin™:
No, because each server is configured differently.

Killer Possum:

--- Quote from: taha116 on December 30, 2008, 07:43:20 PM ---Ahh so basicly if I were to install SMF 1.1.7 using all recomended settings and nothing else I should be as safe as this site itself?

--- End quote ---

Like IchBin said, no because each server is configured differently. Not the server settings page in the forum software, but the server itself. And that's left up to your web host to secure, and hopefully you are with a reputable web host for that reason. ;)

taha116:

--- Quote from: Killer Possum on December 31, 2008, 10:14:00 AM ---
--- Quote from: taha116 on December 30, 2008, 07:43:20 PM ---Ahh so basicly if I were to install SMF 1.1.7 using all recomended settings and nothing else I should be as safe as this site itself?

--- End quote ---

Like IchBin said, no because each server is configured differently. Not the server settings page in the forum software, but the server itself. And that's left up to your web host to secure, and hopefully you are with a reputable web host for that reason. ;)

--- End quote ---

AH, so if i followed the recomended settings from SMF and happened to have a good host that kept my server secure.. i should, in most cases have nothing to worry about.

Just a suggestion as part of this reply its a quick one... joomla has this sort of server check thingy during instilation to see if all recomeded and required features are enabled, maybe SMF should try something like that out...
That would help people know if thy will be able to run SMF properly or not, and also if it would be on a secure server...

Skhilled:
Those checks do not necessarily mean that the server is secure. It only checks to see that the software in question will install properly so the software will be more secure...not the server itself.

Navigation

[0] Message Index

[#] Next page

[*] Previous page

Go to full version