If your website data is very important (that is, the trash can be done in two days), it is recommended that you follow the security steps described in this article for strict setup.
1. Directory Permissions
We do not recommend the user to set the column directory in the root directory, because it is very troublesome to make security settings, by default, after the installation is complete, the directory settings are as follows:
(1) data, templets, uploads, a or 5.3 of the HTML directory, set the ability to read and write, non-executable permissions;
(2) Do not need the topic, it is recommended to delete the special directory, you need to be able to generate HTML, delete special/index.php and then set the directory as read-write, non-executable permissions;
(3) Include, member, plus, background management directory is set to executable script, readable, but not writable (installation of additional modules, book, ask, company, the group directory is also set).
2, other need to pay attention to the problem
(1) Although the install directory has been strictly processed, but for the sake of safety, we still recommend to delete it;
(2) Do not use the Web site directly with the MySQL root user rights, to each site to set up a separate MySQL user account, the license permissions are:
SELECT, INSERT, UPDATE, DELETE
Create, DROP, INDEX, ALTER, create temporary TABLES
Because Dede does not use stored procedures anywhere, it is important to disable permissions to execute stored procedures or file operations, such as file, execute, and so on.
3, how to set the permissions of the directory?
For Linux users, I believe most of them already understand these things.
(1) Set directory as read-only
(2) Setting directory does not allow execution
Setting does not allow script execution
It is also important to note that both IIS and Apache do not Add. php and. inc files to MIME so that the system prevents them from being downloaded.
Share:
Dede Site Directory permissions settings