False Message about config file writable

**kbeard** · 6 Jun 2007, 03:01 PM

I am getting a security message on my site www.therasounds.com
"Warning: I am able to write to the configuration file: /home/therscom/public_html/store/includes/configure.php. This is a potential security risk - please set the right user permissions on this file (read-only, CHMOD 644 or 444 are typical). You may need to use your webhost control panel/file-manager to change the permissions effectively. Contact your webhost for assistance."
However, when I check both the configure .php are set to 644. Is this a bug or a breach?
Keith

**kbeard** · 6 Jun 2007, 04:03 PM

Th host of my site asked that I change the CHMOD to 444. as they have changed to PHP 5.
Sorry for the false alarm.

Keith

**kbeard** · 6 Jun 2007, 04:11 PM

Just had a thought - does this mean I have to change all file that were 644 to 444? Please advise.

Keith

**Merlinpa1969** · 6 Jun 2007, 04:33 PM

No only that config file,

**kbeard** · 6 Jun 2007, 05:13 PM

Thanks for the reassurance Merlinpa.

Keith

Thread: False Message about config file writable

Thread Tools

Search Thread

Display

False Message about config file writable

Re: False Message

Re: False Message

Re: False Message

Re: False Message

Similar Threads

v150 recurring message stating i need to install of fix config file

non-writable configure file being flagged as writable

about config file

SSL -- admin blank in secure, 'false' in config will not reset to http

Posting Permissions