Posts: 260
Threads: 39
Joined: Jun 2014
Help!
I tried to synchronize theme files between a local WAMP installation and a web installation. This seems to result in changed access permissions for all the copied files
.
GS would need something like 65536/65536 in Filezilla, but they all are on 1000/1000. How can I reverse this?
Thank you
Hypertexter
Posts: 6,266
Threads: 181
Joined: Sep 2011
filezilla right click chmod
Posts: 260
Threads: 39
Joined: Jun 2014
In this account Filezilla allows me only to change access permissions (644 to 777 and that stuff), but this seem to be owner rights.
GS sets ownership to 65535. The manually uploaded files have 1000, and GS cannot change them. I do not find a switch in Filezilla to change that.
Posts: 6,266
Threads: 181
Joined: Sep 2011
owner is userid of local system , not GS
that would be your ftp login
and the other would be your ftp process account
you need to ssh and chown the files or upload some other way
Posts: 260
Threads: 39
Joined: Jun 2014
I was asking my web hoster. They say these 65534 values (not 65536) come from Apache.
Are you sure, this is all ok in 3.3.11? I cannot edit the template.php files any more, not in Cardinal, not in Innovation standard theme, not in my custom theme.
But I did nothing on the standard themes. The files are on 644 and 1000/1000 and when I try to edit them (also if the theme is not the actual theme at that moment), and save the changes, I get "can't open file" on a white page.
Posts: 6,266
Threads: 181
Joined: Sep 2011
I meant apache or php process user, yes.
almost nothing was changed in 3.3.11
only these were changed
https://github.com/GetSimpleCMS/GetSimpl...b4390dc6bd
i am going to guess you have permission problems still.
Posts: 260
Threads: 39
Joined: Jun 2014
2016-08-21, 23:16:28
(This post was last modified: 2016-08-21, 23:18:03 by Hypertexter.)
Quote:i am going to guess you have permission problems still.
Definitely. But how to solve? There is no way to set user/group to 65534 manually.
I could change 644 to 777 for the themes folders. Would that be a security risk?
Is there an overview with standard permissions of a fresh GS install to rebuild?
Posts: 6,266
Threads: 181
Joined: Sep 2011
you can try uploading via control panel instead of ftp,
also you can try group writable permissions and see if that works, 755, 777 might be overkill, but that is the easiest way to test permissions issues.
Posts: 260
Threads: 39
Joined: Jun 2014
2016-08-21, 23:39:06
(This post was last modified: 2016-08-21, 23:49:33 by Hypertexter.)
What do you mean by "upload via control panel"? Upload via GS? There I can only upload to the uploads folder.
And how/where can I try group writable permissions?
And what means "might be an overkill"? Is it a security risk, or is it not?
And is there an overview with standard permissions which I could imitate?
Posts: 6,266
Threads: 181
Joined: Sep 2011
your host cpanel upload will use a different owner than your ftp login, likely
yes 777 is bad, but it will tell you instantly if your problem is permissions or user.
Posts: 260
Threads: 39
Joined: Jun 2014
777 for template.php helps. And what does that tell me now?
Posts: 6,266
Threads: 181
Joined: Sep 2011
Posts: 6,266
Threads: 181
Joined: Sep 2011
Posts: 6,266
Threads: 181
Joined: Sep 2011
you can try 664 for files, and see if you just need group write
Posts: 260
Threads: 39
Joined: Jun 2014
2016-08-22, 02:54:26
(This post was last modified: 2016-08-22, 02:58:09 by Hypertexter.)
664 was not enough, 755 and 775 also not, 666 worked.
Is there no general answer for all servers, which permissions do the files need? I never had problems saving changes in template.php or style.css and suddenly I have.
That security vulnerabilities with 777: is that even when logged off ftp? Or isn't the file always protected by the ftp logon password, so that using 777 would be no real problem?
Posts: 6,266
Threads: 181
Joined: Sep 2011
file permissions have nothing to do with ftp.
it depends on if your php ftp and apache are in the same group. You might be able to chown the php files to php or a user in the same group, so you do not need to set writable for other, which is not good.