Wordpress File Permissions?

Professional Dude Prominent Member

Messages:: 6,261

Likes Received:: 430

Best Answers:: 0

Trophy Points:: 330

#1

What are the permissions do I need to set for wordpress files and folders?

So nobody can upload files which do not belong to me, and that can help me make wordpress safer.

What are your wp file permissions?
Thanks

Professional Dude, Jul 24, 2009 IP

My220x Member

Messages:: 624

Likes Received:: 5

Best Answers:: 0

Trophy Points:: 35

#2

Most should be 644 but ones which require user uploading should be 755.

My220x, Jul 24, 2009 IP

Professional Dude likes this.

Guttu Peon

Messages:: 728

Likes Received:: 88

Best Answers:: 0

Trophy Points:: 0

#3

All files are 644 except uploads folder which is 777.

Guttu, Jul 25, 2009 IP

Professional Dude Prominent Member

Messages:: 6,261

Likes Received:: 430

Best Answers:: 0

Trophy Points:: 330

#4

Guttu said: ↑

All files are 644 except uploads folder which is 777.
Click to expand...

what about other folders such as wp-admin?

Professional Dude, Jul 25, 2009 IP

Guttu Peon

Messages:: 728

Likes Received:: 88

Best Answers:: 0

Trophy Points:: 0

#5

All includes all files in wp-include, wp-admin and wp-content. Only the "uploads" folder should be 777

Guttu, Jul 25, 2009 IP

Professional Dude likes this.

sandeepdude Well-Known Member

Messages:: 1,741

Likes Received:: 69

Best Answers:: 0

Trophy Points:: 195

#6

Wp-admin,wp-content folders must me 755.
But when you upgrade,You need to set them to 777

sandeepdude, Jul 25, 2009 IP

Professional Dude likes this.

Professional Dude Prominent Member

Messages:: 6,261

Likes Received:: 430

Best Answers:: 0

Trophy Points:: 330

#7

So basically I dont have to change any files because Wp comes with these as default.
I checked my folders, they are 755 and files 644,.

Can this stop people from uploading files that do not belong to me?

Professional Dude, Jul 25, 2009 IP

sandeepdude Well-Known Member

Messages:: 1,741

Likes Received:: 69

Best Answers:: 0

Trophy Points:: 195

#8

Professional Dude said: ↑

So basically I dont have to change any files because Wp comes with these as default.
I checked my folders, they are 755 and files 644,.

Can this stop people from uploading files that do not belong to me?
Click to expand...

Yes,
it will disallow uploading files by strangers...

sandeepdude, Jul 25, 2009 IP

My220x Member

Messages:: 624

Likes Received:: 5

Best Answers:: 0

Trophy Points:: 35

#9

Only the admin can upload files anyway.

My220x, Jul 25, 2009 IP

Professional Dude Prominent Member

Messages:: 6,261

Likes Received:: 430

Best Answers:: 0

Trophy Points:: 330

#10

So wordpress is unhackable then?

Professional Dude, Jul 25, 2009 IP

bncplix Banned

Messages:: 76

Likes Received:: 0

Best Answers:: 0

Trophy Points:: 0

#11

What if i had set all the permissions to 777 for the entire thing?

How can somebody possibly upload a file there if I have no file uploading script?

bncplix, Jul 25, 2009 IP

Jalpari Notable Member

Messages:: 5,640

Likes Received:: 137

Best Answers:: 0

Trophy Points:: 260

#12

use wordpress security plugin it will tell u ur blog is secure or unsecured and it also tells what to do with permissions.

Few tips.

never use default table prefix.
set 403 access to ur themes/plugins/wp-admin folder.
set hard password.

Jalpari, Jul 25, 2009 IP

Professional Dude likes this.

Professional Dude Prominent Member

Messages:: 6,261

Likes Received:: 430

Best Answers:: 0

Trophy Points:: 330

#13

Jalpari said: ↑

use wordpress security plugin it will tell u ur blog is secure or unsecured and it also tells what to do with permissions.

Few tips.

never use default table prefix.
set 403 access to ur themes/plugins/wp-admin folder.
set hard password.
Click to expand...

Is this the security plugin WP Security Scan?
http://wordpress.org/extend/plugins/wp-security-scan/
or some other one?

Thanks for your reply

Professional Dude, Jul 25, 2009 IP

Guttu Peon

Messages:: 728

Likes Received:: 88

Best Answers:: 0

Trophy Points:: 0

#14

Just another tip..

Keep changing the password of FTP and wordpress regularly. FTP is more important as it will give total control.

Guttu, Jul 25, 2009 IP

Professional Dude Prominent Member

Messages:: 6,261

Likes Received:: 430

Best Answers:: 0

Trophy Points:: 330

#15

While checking my error logs, i found these errors

PHP Warning: gzuncompress() [<a href='function.gzuncompress'>function.gzuncompress</a>]: data error in
Click to expand...

Does anyone know what are these errors?

Professional Dude, Jul 25, 2009 IP

nd09 Peon

Messages:: 60

Likes Received:: 0

Best Answers:: 0

Trophy Points:: 0

#16

if there is file update change to 755 or 777, if the secure file change to 644 or 655 chmod

nd09, Aug 5, 2009 IP

Log in or Sign up

Wordpress File Permissions?

Professional Dude Prominent Member

My220x Member

Guttu Peon

Professional Dude Prominent Member

Guttu Peon

sandeepdude Well-Known Member

Professional Dude Prominent Member

sandeepdude Well-Known Member

My220x Member

Professional Dude Prominent Member

bncplix Banned

Jalpari Notable Member

Professional Dude Prominent Member

Guttu Peon

Professional Dude Prominent Member

nd09 Peon

Useful Searches