** Permissions & Passwords **
-
There's been a lot of talk about permissions and some about passwords, and seeing as it's about as important as anything, I figured I'd sticky up some useful tips I just scribbled off, so here you are and please chip in too.
~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
hey .. I strapped on a handy permissions tool to guv, use that to learn about these sodding permissions ;)
The main thing is ..
1. always keep permissions as low as poss
2. .. ESPECIALLY FOR OTHERS ie, not user or groups, but for that lot trying to hack you .. (tell me about it!!!)
3. folders can be 765 but ideally 755
4. files never more than 644 .. well, I spose you could get away with 764 but can't see the point anyway.
5. probably something I've forgotten.
6. for wordpress get wp-security scan and use it, WP Firewall is good but may scare you a bit.
7. *** always be upgraded for any web app and any extensions. ***
8. sensible passwords .. damn complicated, ruddy long passwords .. use LastPass so you don't have to remember them because, if they're any good, you'll forget them. 0rusealongPas$wordinst3adhackthis .. you get the idea, slightly overkill eg there.
9. SEPARATE PASSWORDS FOR VPS-CP/VPS-USER/MySQL-ROOT/MySQL-USR/SITE-LOGINS etc. LastPass .. check it out and carry it on a keyfob.Posted 1 year ago #
Reply
You must log in to post.
Want HTML?
a blockquote code em strong ul ol liPlace code between backticks `codeHere`
You've got it.