[wellylug] File permissions for SilverStripe

Jim Cheetham jim at gonzul.net
Thu Jul 12 11:55:27 NZST 2007


> What is the best practice for us to use in setting permissions inside
>  the .tar.gz file? Should it be rw-rw-rw, for instance?

Absolutely not. The tar file permissions should be "default secure",
so 500 or less should do it. Post-install instructions should deal
with opening things up. Preferably scripted :-)

>  I'm talking about what will work best in terms of most people out of the
>  box, especially for people who are unclear or unfamilar with file
>  permissions, etc. We want people to have a great out-of-the-box
>  experience, rather than the first step being messing with file permissions.

Great experience involves not leaving things so open that they will
later break, or be the cause of breakage.

-jim




More information about the wellylug mailing list