I am a bit hesitant using the notorious chmod 0777 command. What are the actual access needs in the directories and Is there a bit more secure way to configure access control to the ee directories.

The installation instruction tells to chmod 0777 the thumbs directory and the parent directory of the thumbs directory. This is the actual root directory of the EE. This means that all the common users in the unix box can whipe out the whole EE.

Kristian

An other security question:

What are the minimun priviledges the EE "user" needs for the mysql database.
ie. the "select" "insert" "update" "shutdown" etc. etc.

steelduck wrote:
An other security question:

What are the minimun priviledges the EE "user" needs for the mysql database.
ie. the "select" "insert" "update" "shutdown" etc. etc.

For install and updates only: select, insert, update, delete, create, drop

For everyday use: select, insert, update, delete.

steelduck wrote:
I am a bit hesitant using the notorious chmod 0777 command. What are the actual access needs in the directories and Is there a bit more secure way to configure access control to the ee directories.

The installation instruction tells to chmod 0777 the thumbs directory and the parent directory of the thumbs directory. This is the actual root directory of the EE. This means that all the common users in the unix box can whipe out the whole EE.

Kristian

You need to set permissions to be able to move files between microthumb and thumb directories. 766 might work in some systems but not all.

Thumbs and microthumbs don't need to be in EE dir, they can be anywhere in the system as long as they can be accessed with both relative path and with URL.

If you don't use copy/delete editor at all you can ignore chmod'ing.