Posted by hate90 on December 21, 2012 at 12:09am
my images styles were not working everytime i exported o copied a website, i saw that the drupal folder permissions was checked to "read only" now that i have uncheck it they are working fine, this is a windows pc of course
MY QUESTION IS
is there any security threat when i upload the files to a server? should i set the drupal folder back to "read only" before uploading?
please help
thanks
Comments
If you want to be able to
If you want to be able to upload images via the Drupal website, the folder where those images are stored must be writable by Drupal. If you want to upload images via an ftp client, the folder must be writable by the ftp account you are using. This does not mean the folder must be writable by everyone, only by the server users who need permission to write it.
If you want more detail read the documentation: http://drupal.org/node/244924
As for your question "is there a security threat when I upload files", obviously a website which does not permit uploads is potentially more secure than which does. But for ultimate security you would end up turning off many or all useful features of Drupal, or just creating a static site. Uploading files on a site and server where normal security principles are followed should be reasonably secure.
Digit Professionals