__/ [Charles Sweeney] on Friday 23 December 2005 12:37 \__
> Jim wrote
>> I am using some php scripts that writes to different files, and the
>> files need a 666 chmod setting (read+write, read+write, read+write).
>> Are there any security issues involved in having xml or txt files on
>> my website chmod'ed to 666?
> Unless you keep sensitive information on your server, then there's nothing
> that can't be fixed by a reinstall and backup.
If you have a piece of Web-based software, be careful. If hacked (assuming it
allows the user to upload files) expect this case of hijacking to put the
entire Web server in jeopardy. Choose good software; choose hard-to-crack
Roy S. Schestowitz | "Computers are useless. They only solve problems"
http://Schestowitz.com | SuSE Linux | PGP-Key: 0x74572E8E
2:05pm up 12 days 21:16, 7 users, load average: 0.44, 0.52, 0.47
http://iuron.com - next generation of search paradigms