[wp-trac] [WordPress Trac] #44190: Codex hardening guide recommends insecure permissions
WordPress Trac
noreply at wordpress.org
Tue May 22 20:14:41 UTC 2018
#44190: Codex hardening guide recommends insecure permissions
--------------------------+------------------------------
Reporter: SimbaLion | Owner: (none)
Type: defect (bug) | Status: closed
Priority: normal | Milestone: Awaiting Review
Component: Security | Version:
Severity: major | Resolution: invalid
Keywords: | Focuses:
--------------------------+------------------------------
Changes (by JPry):
* keywords: needs-codex =>
* status: new => closed
* version: 4.9.6 =>
* resolution: => invalid
Comment:
Hi @SimbaLion, welcome to Trac!
Trac is used for the WordPress core ''code''. The codex is an entirely
separate wiki that is editable by anyone, which means you can create an
account an make edits directly. Take a look at
https://codex.wordpress.org/Help:Contents to start with. You're welcome to
add to the Codex if you feel that it is missing information.
> This guide falsely recommends 755 and 644 as permissions. But this is
completely wrong.
This is not completely wrong. It very clearly mentions that these are
''default'' recommendations, and it also mentions that the permissions can
be set to be more restrictive. I would recommend that you only add your
own information about further hardening rather than removing anything that
is currently there.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/44190#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list