On 1 fév, 15:08, Tom Boutell <[email protected]> wrote: > Macintosh-4:~ boutell$ cd tmp > Macintosh-4:tmp boutell$ symfony generate:project testperms > > ... various other output elided ... > > >> chmod 777 /Users/boutell/tmp/web/uploads > > It is the case by default. > > Symfony is rather aggressive with the 777 permissions actually, the > cache is also 777 (by necessity in many hosting environments I > realize). >
Having write permission on the directory allow to delete a file from it, not overwrite it ; if the .htaccess file is 444, it's impossible to overwrite it with an uploaded file. However, I also think Symfony is too loose on permissions to be deployed in production as is (I'm not even talking about ini_set and memory_limit calls...). Regards, Florian MAURY -- You received this message because you are subscribed to the Google Groups "symfony developers" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/symfony-devs?hl=en.
