SlideShare ist ein Scribd-Unternehmen logo

Joomla! User Group Suffolk - Demystifying Ownership and Permissions in Unix and Joomla!

‱Als ODP, PDF herunterladen‱
‱
Ruth Cheesley
Ruth Cheesley

A basic presentation explaining Unix file and folder ownership and permissions, and how this relates to the Joomla! Content Management System - by Ruth Cheesley, Virya Technologies

TechnologieKunst & Fotos
1 von 19
Getting to grips with ownership and permissions Ruth Cheesley – Virya Technologies @RCheesley / @ViryaTech Did you tell people you're at @JoomlaSuffolk this evening? Did you check in at Basepoint?
In an interconnected world, we need to control who can access what!
Some things I want to Share with everyone (the world) Emergency Phone Number (share with all who know where to find it) Some things I might nly want to be available to me (owner) Some things I might want to share with I might want to share these groups something with just this group
So how does it all work 'behind the scenes'?
World (The world, the universe, and everything – not in the same group as the owner) Group (A set of users in the same group as the owner) Owner (owns the file)
Can view the file Chmod +r / -r Numerical value = 4 Read (r) Write (w) Can make changes or modify the file Chmod +w / -w Numerical value = 2 Execute (x) Can run the file (generally applicable at command line) Chmod +x / -x Numerical value = 1 NOTE: Folders cannot be listed and files within can't be accessed if the folder does not have execute permissions
So what about 7's and 6's ● All permission combinations are derived by adding these basic permissions ● 7 represents Read (4) + Write (2) + Execute (1) ● 6 represents Read (4) + Write (2)
Basic file permissions Number Permission 0 Deny all 1 Execute (x) only 2 Write (w) only 3 Write & Execute (2+1) 4 Read only 5 Read & Execute (4+1) 6 Read & Write (4+2) 7 Read + Write + Execute (4+2+1)
Important considerations ● Write permissions are required for moving a file ● You must be owner of a file/folder to change its permissions ● You need read permission on a folder to show the contents ● Generally permissions are tighter for 'world', less so for 'group' and least for 'owner'
So what does 755 and 644 mean? ● In Joomla! Folders should be 755 and files 644 – configuration.php should be 444 ● What does this mean? ● Let's work it out!
Joomla! permissions Owner Group World 7 5 5 (Read + Write + Execute) (Read + Execute) (Read + Execute) rwx r-x r-x 6 4 4 (Read + Write) (Read) (Read) rw- (r--) (r--)
What is chmod all about? ● A command you can use to change the permissions on files and folders ● Used in command line ● Example: chmod [options] [permissions] [item] chmod +R 644 MyFolder
Why does this cause problems? ● Generally down to poor setup by hosting providers (or simply lack of awareness) ● Usually relates to how Joomla! was originally installed ● Which user 'owns' the files and folders, and therefore has or doesn't have permissions
File and folder has permissions which restrict who can: If file/folder is not ● Read available with ● Write appropriate ● Execute Trying to access and/or move access, 403 files and/or folders, or list forbidden folders will result in: FTP username is If file/folder is joebloggs available with appropriate Therefore access, access OWNED by granted joebloggs joebloggs is in the managers group
Where it goes wrong World (The world, the universe, and everything – not in the same group as the owner) Group (A set of users in the same group as the owner) Owner (owns the file)
How to fix this ● Chmod the files & folders to the correct permissions, if permission is an issue (or use Admin Tools!) ● Set up the server correctly - www.virya.co.uk/joomlaserversetup
The geeky stuff ● If your server runs mod_php – Document root: 750 – Directories: 755 (711 if you're paranoid – only if not listed) – Files: 644 ● If your server runs fast-cgi, suphp or cgi – Document root: 750 – Directories: 755 (711 if you're paranoid – only if not listed) – HTML & Image files: 644 (444 if you're paranoid) – PHP files: 600 (400 if you're paranoid) SOURCE: www.virya.co.uk/joomlaserversetup
A word of warning ● It's very useful to have a basic understanding of ownership & permissions to help you troubleshoot, but TAKE BACKUPS! ● You can completely break things by tinkering with permissions if you don't know what you're doing! ● If in doubt, speak to a geek!
Thank you! Any questions? Ruth Cheesley @Rcheesley / @ViryaTech

Empfohlen

Basic Cli By M Fawzy
Basic Cli By M FawzyBasic Cli By M Fawzy
Basic Cli By M Fawzy
Mahmoud Fawzy
 
Terminal Velocity: Work faster in your shell
Terminal Velocity: Work faster in your shellTerminal Velocity: Work faster in your shell
Terminal Velocity: Work faster in your shell
All Things Open
 
Ruby on CouchDB - SimplyStored and RockingChair
Ruby on CouchDB - SimplyStored and RockingChairRuby on CouchDB - SimplyStored and RockingChair
Ruby on CouchDB - SimplyStored and RockingChair
Jonathan Weiss
 
Joomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! Security
Joomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! SecurityJoomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! Security
Joomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! Security
Ruth Cheesley
 
Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...
Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...
Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...
Ruth Cheesley
 
Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...
Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...
Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...
Ruth Cheesley
 
Joomla!Day Switzerland 2013 - Ruth Cheesley - SEO for Mythbusters
Joomla!Day Switzerland 2013 - Ruth Cheesley - SEO for MythbustersJoomla!Day Switzerland 2013 - Ruth Cheesley - SEO for Mythbusters
Joomla!Day Switzerland 2013 - Ruth Cheesley - SEO for Mythbusters
Ruth Cheesley
 
CMS Security - Ruth Cheesley - CMS Africa 2014
CMS Security - Ruth Cheesley - CMS Africa 2014CMS Security - Ruth Cheesley - CMS Africa 2014
CMS Security - Ruth Cheesley - CMS Africa 2014
Ruth Cheesley
 

Empfohlen

Basic Cli By M Fawzy
Basic Cli By M FawzyBasic Cli By M Fawzy
Basic Cli By M Fawzy
Mahmoud Fawzy
 
Terminal Velocity: Work faster in your shell
Terminal Velocity: Work faster in your shellTerminal Velocity: Work faster in your shell
Terminal Velocity: Work faster in your shell
All Things Open
 
Ruby on CouchDB - SimplyStored and RockingChair
Ruby on CouchDB - SimplyStored and RockingChairRuby on CouchDB - SimplyStored and RockingChair
Ruby on CouchDB - SimplyStored and RockingChair
Jonathan Weiss
 
Joomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! Security
Joomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! SecurityJoomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! Security
Joomla!Day UK 2011 - Virya Technologies - Ruth Cheesley - Joomla! Security
Ruth Cheesley
 
Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...
Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...
Joomla User Group Suffolk - July 2012 - Crossing the line first or last - per...
Ruth Cheesley
 
Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...
Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...
Joomla User Group Suffolk - July 2012 - Template Optimisation by Ruth Cheesle...
Ruth Cheesley
 
Joomla!Day Switzerland 2013 - Ruth Cheesley - SEO for Mythbusters
Joomla!Day Switzerland 2013 - Ruth Cheesley - SEO for MythbustersJoomla!Day Switzerland 2013 - Ruth Cheesley - SEO for Mythbusters
Joomla!Day Switzerland 2013 - Ruth Cheesley - SEO for Mythbusters
Ruth Cheesley
 
CMS Security - Ruth Cheesley - CMS Africa 2014
CMS Security - Ruth Cheesley - CMS Africa 2014CMS Security - Ruth Cheesley - CMS Africa 2014
CMS Security - Ruth Cheesley - CMS Africa 2014
Ruth Cheesley
 
Apache Spark talk @ The Amsterdam Applied Machine Learning meetup group
Apache Spark talk @ The Amsterdam Applied Machine Learning meetup groupApache Spark talk @ The Amsterdam Applied Machine Learning meetup group
Apache Spark talk @ The Amsterdam Applied Machine Learning meetup group
fvanvollenhoven
 
Apache Spark Talk for Applied machine learning
Apache Spark Talk for Applied machine learningApache Spark Talk for Applied machine learning
Apache Spark Talk for Applied machine learning
GoDataDriven
 
Intro to Drush
Intro to DrushIntro to Drush
Intro to Drush
Four Kitchens
 
Course 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and PermissionsCourse 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and Permissions
Ahmed El-Arabawy
 
Linux for CS Majors
Linux for CS MajorsLinux for CS Majors
Linux for CS Majors
worr1244
 
Php File Operations
Php File OperationsPhp File Operations
Php File Operations
Jamshid Hashimi
 
API Design
API DesignAPI Design
API Design
James Gray
 
Guild Prototype
Guild PrototypeGuild Prototype
Guild Prototype
Koichi Sasada
 
Django Files — A Short Talk
Django Files — A Short TalkDjango Files — A Short Talk
Django Files — A Short Talk
James Aylett
 
Linux day 2.ppt
Linux day 2.pptLinux day 2.ppt
Linux day 2.ppt
Kalkey
 
Racing with Droids
Racing with DroidsRacing with Droids
Racing with Droids
Peter Hlavaty
 
Frequently asked questions answered frequently - but now for the last time
Frequently asked questions answered frequently - but now for the last timeFrequently asked questions answered frequently - but now for the last time
Frequently asked questions answered frequently - but now for the last time
Andreas Jung
 
Surviving OS X as a Windows Admin
Surviving OS X as a Windows AdminSurviving OS X as a Windows Admin
Surviving OS X as a Windows Admin
Dell World
 
LXC Containers and AUFs
LXC Containers and AUFsLXC Containers and AUFs
LXC Containers and AUFs
Docker, Inc.
 
Face your fears: Drush and Aegir
Face your fears: Drush and AegirFace your fears: Drush and Aegir
Face your fears: Drush and Aegir
Iztok Smolic
 
File system discovery
File system discovery File system discovery
File system discovery
DevMix
 
Learning Linux v2.1
Learning Linux v2.1Learning Linux v2.1
Learning Linux v2.1
sdiviney
 
Drupal Front End PHP
Drupal Front End PHPDrupal Front End PHP
Drupal Front End PHP
Emma Jane Hogbin Westby
 
Hadoop
HadoopHadoop
Hadoop
Po-Han Chen
 
Introduction to Linux Privilege Escalation Methods
Introduction to Linux Privilege Escalation MethodsIntroduction to Linux Privilege Escalation Methods
Introduction to Linux Privilege Escalation Methods
Bishop Fox
 
Open source meets marketing - Presentation - OpenFest 2019
Open source meets marketing - Presentation - OpenFest 2019Open source meets marketing - Presentation - OpenFest 2019
Open source meets marketing - Presentation - OpenFest 2019
Ruth Cheesley
 
Data first web development
Data first web developmentData first web development
Data first web development
Ruth Cheesley
 

Weitere Àhnliche Inhalte

Ähnlich wie Joomla! User Group Suffolk - Demystifying Ownership and Permissions in Unix and Joomla!

Linux day 2.ppt
Linux day 2.pptLinux day 2.ppt
Linux day 2.ppt
Kalkey
 
Frequently asked questions answered frequently - but now for the last time
Frequently asked questions answered frequently - but now for the last timeFrequently asked questions answered frequently - but now for the last time
Frequently asked questions answered frequently - but now for the last time
Andreas Jung
 
LXC Containers and AUFs
LXC Containers and AUFsLXC Containers and AUFs
LXC Containers and AUFs
Docker, Inc.
 
Learning Linux v2.1
Learning Linux v2.1Learning Linux v2.1
Learning Linux v2.1
sdiviney
 
Introduction to Linux Privilege Escalation Methods
Introduction to Linux Privilege Escalation MethodsIntroduction to Linux Privilege Escalation Methods
Introduction to Linux Privilege Escalation Methods
Bishop Fox
 

Ähnlich wie Joomla! User Group Suffolk - Demystifying Ownership and Permissions in Unix and Joomla! (20)

Apache Spark talk @ The Amsterdam Applied Machine Learning meetup group
Apache Spark talk @ The Amsterdam Applied Machine Learning meetup groupApache Spark talk @ The Amsterdam Applied Machine Learning meetup group
Apache Spark talk @ The Amsterdam Applied Machine Learning meetup group
 
Apache Spark Talk for Applied machine learning
Apache Spark Talk for Applied machine learningApache Spark Talk for Applied machine learning
Apache Spark Talk for Applied machine learning
 
Intro to Drush
Intro to DrushIntro to Drush
Intro to Drush
 
Course 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and PermissionsCourse 102: Lecture 14: Users and Permissions
Course 102: Lecture 14: Users and Permissions
 
Linux for CS Majors
Linux for CS MajorsLinux for CS Majors
Linux for CS Majors
 
Php File Operations
Php File OperationsPhp File Operations
Php File Operations
 
API Design
API DesignAPI Design
API Design
 
Guild Prototype
Guild PrototypeGuild Prototype
Guild Prototype
 
Django Files — A Short Talk
Django Files — A Short TalkDjango Files — A Short Talk
Django Files — A Short Talk
 
Linux day 2.ppt
Linux day 2.pptLinux day 2.ppt
Linux day 2.ppt
 
Racing with Droids
Racing with DroidsRacing with Droids
Racing with Droids
 
Frequently asked questions answered frequently - but now for the last time
Frequently asked questions answered frequently - but now for the last timeFrequently asked questions answered frequently - but now for the last time
Frequently asked questions answered frequently - but now for the last time
 
Surviving OS X as a Windows Admin
Surviving OS X as a Windows AdminSurviving OS X as a Windows Admin
Surviving OS X as a Windows Admin
 
LXC Containers and AUFs
LXC Containers and AUFsLXC Containers and AUFs
LXC Containers and AUFs
 
Face your fears: Drush and Aegir
Face your fears: Drush and AegirFace your fears: Drush and Aegir
Face your fears: Drush and Aegir
 
File system discovery
File system discovery File system discovery
File system discovery
 
Learning Linux v2.1
Learning Linux v2.1Learning Linux v2.1
Learning Linux v2.1
 
Drupal Front End PHP
Drupal Front End PHPDrupal Front End PHP
Drupal Front End PHP
 
Hadoop
HadoopHadoop
Hadoop
 
Introduction to Linux Privilege Escalation Methods
Introduction to Linux Privilege Escalation MethodsIntroduction to Linux Privilege Escalation Methods
Introduction to Linux Privilege Escalation Methods
 

Mehr von Ruth Cheesley

Conflict as an opportunity for growth in Open Source communities - European C...
Conflict as an opportunity for growth in Open Source communities - European C...Conflict as an opportunity for growth in Open Source communities - European C...
Conflict as an opportunity for growth in Open Source communities - European C...
Ruth Cheesley
 

Mehr von Ruth Cheesley (20)

Open source meets marketing - Presentation - OpenFest 2019
Open source meets marketing - Presentation - OpenFest 2019Open source meets marketing - Presentation - OpenFest 2019
Open source meets marketing - Presentation - OpenFest 2019
 
Data first web development
Data first web developmentData first web development
Data first web development
 
Integrated Marketing Strategies with Mautic
Integrated Marketing Strategies with MauticIntegrated Marketing Strategies with Mautic
Integrated Marketing Strategies with Mautic
 
Automating your marketing workflows in Joomla with Mautic
Automating your marketing workflows in Joomla with MauticAutomating your marketing workflows in Joomla with Mautic
Automating your marketing workflows in Joomla with Mautic
 
Fight for the Pixel - Innovation Martlesham - Ruth Cheesley
Fight for the Pixel - Innovation Martlesham - Ruth CheesleyFight for the Pixel - Innovation Martlesham - Ruth Cheesley
Fight for the Pixel - Innovation Martlesham - Ruth Cheesley
 
Custom Fields in Joomla - JoomlaDay UK 2016 - Marco Dings
Custom Fields in Joomla - JoomlaDay UK 2016 - Marco DingsCustom Fields in Joomla - JoomlaDay UK 2016 - Marco Dings
Custom Fields in Joomla - JoomlaDay UK 2016 - Marco Dings
 
Time to stop breaking your promises - dealing with 404's, broken URLs and pla...
Time to stop breaking your promises - dealing with 404's, broken URLs and pla...Time to stop breaking your promises - dealing with 404's, broken URLs and pla...
Time to stop breaking your promises - dealing with 404's, broken URLs and pla...
 
Chalk and cheese - how developers and designers can work together and not cru...
Chalk and cheese - how developers and designers can work together and not cru...Chalk and cheese - how developers and designers can work together and not cru...
Chalk and cheese - how developers and designers can work together and not cru...
 
Discovering Joomla! - Find out about Joomla's features
Discovering Joomla! - Find out about Joomla's featuresDiscovering Joomla! - Find out about Joomla's features
Discovering Joomla! - Find out about Joomla's features
 
Ruth Cheesley - Joomla World Conference 2014 - How to prove you're worth a mi...
Ruth Cheesley - Joomla World Conference 2014 - How to prove you're worth a mi...Ruth Cheesley - Joomla World Conference 2014 - How to prove you're worth a mi...
Ruth Cheesley - Joomla World Conference 2014 - How to prove you're worth a mi...
 
Conflict as an opportunity for growth in Open Source communities - European C...
Conflict as an opportunity for growth in Open Source communities - European C...Conflict as an opportunity for growth in Open Source communities - European C...
Conflict as an opportunity for growth in Open Source communities - European C...
 
The world needs Open Source - Ruth Cheesley - NorDevCon 2014
The world needs Open Source - Ruth Cheesley - NorDevCon 2014The world needs Open Source - Ruth Cheesley - NorDevCon 2014
The world needs Open Source - Ruth Cheesley - NorDevCon 2014
 
A gaze into the crystal ball of Google - social, local and predictive search
A gaze into the crystal ball of Google - social, local and predictive searchA gaze into the crystal ball of Google - social, local and predictive search
A gaze into the crystal ball of Google - social, local and predictive search
 
Women in Open Source - Ruth Cheesley - CMS Africa 2014
Women in Open Source - Ruth Cheesley - CMS Africa 2014Women in Open Source - Ruth Cheesley - CMS Africa 2014
Women in Open Source - Ruth Cheesley - CMS Africa 2014
 
Ruth Cheesley - Joomla! World Conference 2013 - What are you trying to say (a...
Ruth Cheesley - Joomla! World Conference 2013 - What are you trying to say (a...Ruth Cheesley - Joomla! World Conference 2013 - What are you trying to say (a...
Ruth Cheesley - Joomla! World Conference 2013 - What are you trying to say (a...
 
Ruth Cheesley - Joomla! World Conference 2013 - Is your business intelligent?
Ruth Cheesley - Joomla! World Conference 2013 - Is your business intelligent?Ruth Cheesley - Joomla! World Conference 2013 - Is your business intelligent?
Ruth Cheesley - Joomla! World Conference 2013 - Is your business intelligent?
 
Suffolk Internet Marketing & SEO/M Specialists - Ruth Cheesley - Don't get in...
Suffolk Internet Marketing & SEO/M Specialists - Ruth Cheesley - Don't get in...Suffolk Internet Marketing & SEO/M Specialists - Ruth Cheesley - Don't get in...
Suffolk Internet Marketing & SEO/M Specialists - Ruth Cheesley - Don't get in...
 
Ruth Cheesley - Joomla!Day UK - Joomla in your area
Ruth Cheesley - Joomla!Day UK - Joomla in your areaRuth Cheesley - Joomla!Day UK - Joomla in your area
Ruth Cheesley - Joomla!Day UK - Joomla in your area
 
Ruth Cheesley - Joomla!Day UK - Articles are boring, long live the CCK!
Ruth Cheesley - Joomla!Day UK - Articles are boring, long live the CCK!Ruth Cheesley - Joomla!Day UK - Articles are boring, long live the CCK!
Ruth Cheesley - Joomla!Day UK - Articles are boring, long live the CCK!
 
Ruth Cheesley - Joomla!Day UK - Giving back to Joomla!
Ruth Cheesley - Joomla!Day UK - Giving back to Joomla!Ruth Cheesley - Joomla!Day UK - Giving back to Joomla!
Ruth Cheesley - Joomla!Day UK - Giving back to Joomla!
 

KĂŒrzlich hochgeladen

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
?#DUbAI#??##{{(☎+971_581248768%)**%*]'#abortion pills for sale in dubai@
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel AraĂșjo
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
Overkill Security
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Jeffrey Haguewood
 

KĂŒrzlich hochgeladen (20)

Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024
 
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu SubbuApidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
Apidays Singapore 2024 - Modernizing Securities Finance by Madhu Subbu
 

Joomla! User Group Suffolk - Demystifying Ownership and Permissions in Unix and Joomla!

  • 1. Getting to grips with ownership and permissions Ruth Cheesley – Virya Technologies @RCheesley / @ViryaTech Did you tell people you're at @JoomlaSuffolk this evening? Did you check in at Basepoint?
  • 2. In an interconnected world, we need to control who can access what!
  • 3. Some things I want to Share with everyone (the world) Emergency Phone Number (share with all who know where to find it) Some things I might nly want to be available to me (owner) Some things I might want to share with I might want to share these groups something with just this group
  • 4. So how does it all work 'behind the scenes'?
  • 5. World (The world, the universe, and everything – not in the same group as the owner) Group (A set of users in the same group as the owner) Owner (owns the file)
  • 6. Can view the file Chmod +r / -r Numerical value = 4 Read (r) Write (w) Can make changes or modify the file Chmod +w / -w Numerical value = 2 Execute (x) Can run the file (generally applicable at command line) Chmod +x / -x Numerical value = 1 NOTE: Folders cannot be listed and files within can't be accessed if the folder does not have execute permissions
  • 7. So what about 7's and 6's ● All permission combinations are derived by adding these basic permissions ● 7 represents Read (4) + Write (2) + Execute (1) ● 6 represents Read (4) + Write (2)
  • 8. Basic file permissions Number Permission 0 Deny all 1 Execute (x) only 2 Write (w) only 3 Write & Execute (2+1) 4 Read only 5 Read & Execute (4+1) 6 Read & Write (4+2) 7 Read + Write + Execute (4+2+1)
  • 9. Important considerations ● Write permissions are required for moving a file ● You must be owner of a file/folder to change its permissions ● You need read permission on a folder to show the contents ● Generally permissions are tighter for 'world', less so for 'group' and least for 'owner'
  • 10. So what does 755 and 644 mean? ● In Joomla! Folders should be 755 and files 644 – configuration.php should be 444 ● What does this mean? ● Let's work it out!
  • 11. Joomla! permissions Owner Group World 7 5 5 (Read + Write + Execute) (Read + Execute) (Read + Execute) rwx r-x r-x 6 4 4 (Read + Write) (Read) (Read) rw- (r--) (r--)
  • 12. What is chmod all about? ● A command you can use to change the permissions on files and folders ● Used in command line ● Example: chmod [options] [permissions] [item] chmod +R 644 MyFolder
  • 13. Why does this cause problems? ● Generally down to poor setup by hosting providers (or simply lack of awareness) ● Usually relates to how Joomla! was originally installed ● Which user 'owns' the files and folders, and therefore has or doesn't have permissions
  • 14. File and folder has permissions which restrict who can: If file/folder is not ● Read available with ● Write appropriate ● Execute Trying to access and/or move access, 403 files and/or folders, or list forbidden folders will result in: FTP username is If file/folder is joebloggs available with appropriate Therefore access, access OWNED by granted joebloggs joebloggs is in the managers group
  • 15. Where it goes wrong World (The world, the universe, and everything – not in the same group as the owner) Group (A set of users in the same group as the owner) Owner (owns the file)
  • 16. How to fix this ● Chmod the files & folders to the correct permissions, if permission is an issue (or use Admin Tools!) ● Set up the server correctly - www.virya.co.uk/joomlaserversetup
  • 17. The geeky stuff ● If your server runs mod_php – Document root: 750 – Directories: 755 (711 if you're paranoid – only if not listed) – Files: 644 ● If your server runs fast-cgi, suphp or cgi – Document root: 750 – Directories: 755 (711 if you're paranoid – only if not listed) – HTML & Image files: 644 (444 if you're paranoid) – PHP files: 600 (400 if you're paranoid) SOURCE: www.virya.co.uk/joomlaserversetup
  • 18. A word of warning ● It's very useful to have a basic understanding of ownership & permissions to help you troubleshoot, but TAKE BACKUPS! ● You can completely break things by tinkering with permissions if you don't know what you're doing! ● If in doubt, speak to a geek!
  • 19. Thank you! Any questions? Ruth Cheesley @Rcheesley / @ViryaTech

Hinweis der Redaktion

  1. Data is everything in the digital age – with vital information no longer entrusted to lock and key but being stored on computers often thousands of miles away from where they were deposited. Controlling who can access this data – whether it be your bank account or your facebook photos – comes down to a simple matter of ownership, and permissions. People often get totally baffled by these core concepts so hopefully this should make a bit of sense and help you understand how it works. Once you 'get' this you're over a large hurdle when it comes to web design and hosting issues!
  2. Facebook