How to secure web server folders

General Questions

Last Post by ockert 4 years ago

3 Posts

2 Users

0 Reactions

969 Views

RSS

Posts: 4

ockert

Topic starter

Jul 14, 2020 8:42 pm

(@ockert)

New Member

Joined: 4 years ago

I have a permission problem on my server.

Wordpress sites (Installed via SolidCP) gets hacked then they are able to create files anywhere they want.

IIS appools created by SolidCP are able to create files in c:. How can I ensure that the IIS appools can't create files and folders where they want to.

thanks

2 Replies

Posts: 60

Jade

Jul 15, 2020 9:40 am

(@shabsta)

Member

Joined: 7 years ago

You should grant everyone permission to your C drive, only administrators and system account should have access to your C drive.

Your hostingspaces directory should include read permissions for network service and solicpusers group.

Be cautions when applying these changes to a live server as you could brick it - so make sure you have system state backups before any changes.

Posts: 4

ockert

Topic starter

Jul 16, 2020 12:39 pm

(@ockert)

New Member

Joined: 4 years ago

thank you

2 Forums
2,183 Topics
9,995 Posts
0 Online
3,499 Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed