To get directory permissions, you'd really have to go through either FTP or a
terminal connection (telnet, etc).
Yes, but that's doing it programmatically, what about this?
What if you knew that a directory on a site was set to 0777 -- what
damage could you cause?
I have seen scripts that clients purchase that require permissions
for certain directories to be set to 0777 and left that way. The
scripts don't change the permissions; write the file; and then change
them back but rather just leave them set at 0777.
If a site is using such a script and you know what directories have
to be set to 0777, then that's a security issue, isn't it?
Cheers,
tedd
--
-------
http://sperling.com http://ancientstones.com http://earthstones.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
