Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: chmod 777 security risks?
Top Forums UNIX for Dummies Questions & Answers chmod 777 security risks? Post 302097339 by grial on Thursday 23rd of November 2006 10:42:52 AM
Old 11-23-2006
No matter what are the reasons, 777/666 is always a bad idea. There are other ways of allowing access to files (groups, ACLs) as said before.
Quote:
Lets say someone broke into my garage and the files were not chmod'ed 666 or 777, (all files are 644 right now) are you saying that all they can do is look around and read files? But if the files were 666 or 777 they could do whatever they want to?
That's right. No matter what method was used to get acces to your files, in fact user's privileges are irrelevant in this case. From my point of view this is the main reason against "777/666".
Regards.
 

7 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

chmod 777 on all directories below...how do I do that using the "find" command?

I've got 100 directories that each have 2 directories with in them. Structered like this: /home/domains/domain1/ through to /home/domains/domain100/ and those 2 directories mentioned above are here: /home/domains/domain1/directory1/ /home/domains/domain1/directory2/ through to... (7 Replies)
Discussion started by: Neko
7 Replies

2. Solaris

chmod -R 777 in /usr Solaris 9 = Major Screwup

Hello Everyone: One of our admins here accidently ran chmod -R 777 in the /usr folder on a V440 running Solaris 9. After that no one could run any command and could not login. I fixed most of the things by re-restricting some rights and applying the correct rights. Now there is a problem... (3 Replies)
Discussion started by: muntaser_zaheer
3 Replies

3. UNIX for Dummies Questions & Answers

chmod 777 * - oops

I can belive I really did this... chmod 777 /home :eek: I have my /home directory synced to another machine. Can anyone tell me how to get the permissions from back up server /home to production server /home It's important that I dont over write the files on the... (1 Reply)
Discussion started by: shunter63
1 Replies

4. Cybersecurity

can another user 777 and existing 777 dirctory?

User usrA creates dirA directory and runs chmod 777 on the directory. Can usrB issue another 777 on dirA? It appears the answer is no even if the usrA and usrB are part of the same group. I know this is a rare scenario but I just ran across it and found out that usrB receives an error when... (4 Replies)
Discussion started by: zlek131
4 Replies

5. UNIX and Linux Applications

What is the difference between chmod in solaris and chmod in Linux?

i think it is the same in both... Iam i right? (1 Reply)
Discussion started by: sumaiya
1 Replies

6. Windows & DOS: Issues & Discussions

chmod -R 777 * in cygwin

Hello, I use windows XP on a small server. Lately I downloaded a software (hydrological computation) which asked me to install as well the software ‘cygwin' (kind of linux in windows environment) and then to perform in cygwin window the command: ‘chmod -R 777 *' in order to give writings... (2 Replies)
Discussion started by: Cedalise
2 Replies

7. UNIX for Dummies Questions & Answers

Only allowing chmod 777 for file upload folder

Hey everyone. I have 2 different linux servers (each one is through a different web hosting company). On both servers I have the exact same PHP file upload script that allows users to upload a file or image to the server (everything on both servers is identical). On server #1 the "attachments"... (5 Replies)
Discussion started by: Mr.Canuck
5 Replies

LEARN ABOUT BSD

chmod

CHMOD(1)						      General Commands Manual							  CHMOD(1)

NAME

       chmod - change mode

SYNOPSIS

       chmod [ -Rf ] mode file ...

DESCRIPTION

       The  mode  of  each  named  file is changed according to mode, which may be absolute or symbolic.  An absolute mode is an octal number con-
       structed from the OR of the following modes:

       4000	 set user ID on execution
       2000	 set group ID on execution
       1000	 sticky bit, see chmod(2)
       0400	 read by owner
       0200	 write by owner
       0100	 execute (search in directory) by owner
       0070	 read, write, execute (search) by group
       0007	 read, write, execute (search) by others

       A symbolic mode has the form:

	      [who] op permission [op permission] ...

       The who part is a combination of the letters u (for user's permissions), g (group) and o (other).  The letter a stands for all, or ugo.	If
       who is omitted, the default is a but the setting of the file creation mask (see umask(2)) is taken into account.

       Op  can	be + to add permission to the file's mode, - to take away permission and = to assign permission absolutely (all other bits will be
       reset).

       Permission is any combination of the letters r (read), w (write), x (execute), X (set execute only if file is a	directory  or  some  other
       execute bit is set), s (set owner or group id) and t (save text - sticky).  Letters u, g, or o indicate that permission is to be taken from
       the current mode.  Omitting permission is only useful with = to take away all permissions.

       When the -R option is given, chmod recursively descends its directory arguments setting the mode for each file as  described  above.   When
       symbolic links are encountered, their mode is not changed and they are not traversed.

       If the -f option is given, chmod will not complain if it fails to change the mode on a file.

EXAMPLES

       The first example denies write permission to others, the second makes a file executable by all if it is executable by anyone:

	      chmod o-w file
	      chmod +X file

       Multiple  symbolic  modes  separated by commas may be given.  Operations are performed in the order specified.  The letter s is only useful
       with u or g.

       Only the owner of a file (or the super-user) may change its mode.

SEE ALSO

       ls(1), chmod(2), stat(2), umask(2), chown(8)

7th Edition							   May 22, 1986 							  CHMOD(1)
All times are GMT -4. The time now is 04:41 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy