> I try to learn file uploading in PHP. I've successfully uploaded a file > onto my server. I use move_uploaded_file("tmp_dir/tmp_filename", > "destination_dir/filename") to move the temp file. The thing is that I > have to do a "chmod 777 destination_dir" in order to move the file. Is > this bad for security?
Yes, it is. chown the directory to the user or group that mysql runs under, then it only needs to be owner or group writable -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php