https://tech.uvoo.io/index.php?action=history&feed=atom&title=Wordpress_security 2026-04-21T05:14:35Z Revision history for this page on the wiki MediaWiki 1.35.2 https://tech.uvoo.io/index.php?title=Wordpress_security&diff=4350&oldid=prev 2023-07-01T17:00:28Z

<p>Created page with &quot;# File Permissions https://gist.github.com/macbleser/9136424 ``` #!/bin/bash # # This script configures WordPress file permissions based on recommendations # from http://code...&quot;</p> <p><b>New page</b></p><div># File Permissions<br /> <br /> https://gist.github.com/macbleser/9136424<br /> ```<br /> #!/bin/bash<br /> #<br /> # This script configures WordPress file permissions based on recommendations<br /> # from http://codex.wordpress.org/Hardening_WordPress#File_permissions<br /> #<br /> # Author: Michael Conigliaro with tweaks to make it faster and SE Linux by Jonathan Gittos<br /> #<br /> # check if this script has been called with a first parameter and use it as the wordpress root directory<br /> [ -z &quot;$1&quot; ] &amp;&amp; WP_ROOT=$PWD || WP_ROOT=$1<br /> # check owner and group of wp-config and use later to give same to rest of WP DIR unless parameter 2 or 3 set<br /> [ -z &quot;$2&quot; ] &amp;&amp; WP_OWNER=&quot;$(ls -ld $WP_ROOT/wp-config.php | awk '{print $3}')&quot; || WP_OWNER=$2<br /> [ -z &quot;$3&quot; ] &amp;&amp; WP_GROUP=&quot;$(ls -ld $WP_ROOT/wp-config.php | awk '{print $4}')&quot; || WP_GROUP=$3<br /> <br /> # Make sure we're in what looks like a WP directory to avoid big snafus<br /> <br /> if [ ! -f $WP_ROOT/wp-config.php ]; then<br /> echo &quot;&quot;<br /> echo &quot;--------------------------------------------&quot;<br /> echo &quot;This doesn't look like a Wordpress directory!&quot;<br /> echo &quot;Current or chosen directory is &quot; $WP_ROOT<br /> echo &quot;Maybe change directory, or specify a directory as a parameter to this script and try again?&quot;<br /> exit<br /> <br /> fi<br /> <br /> echo -e &quot;\nAbout to reset permissions on:\n &quot; $WP_ROOT<br /> echo &quot;Changing owner and group to:&quot; $WP_OWNER $WP_GROUP<br /> <br /> read -p &quot;Does that look right? &quot; -n 1 -r<br /> echo<br /> <br /> if [[ $REPLY =~ ^[Yy]$ ]]; then<br /> <br /> echo -e &quot;\nRestoring permissions on: &quot; $WP_ROOT<br /> <br /> # reset to safe defaults<br /> chown -R ${WP_OWNER}:${WP_GROUP} $WP_ROOT;<br /> chmod -R 644 $WP_ROOT;<br /> chcon -R system_u:object_r:httpd_sys_content_t:s0 $WP_ROOT;<br /> find ${WP_ROOT} -type d -exec chmod -R 755 {} \;<br /> <br /> # allow wordpress to manage wp-config.php (but prevent world access)<br /> chgrp ${WP_GROUP} ${WP_ROOT}/wp-config.php<br /> chmod 660 ${WP_ROOT}/wp-config.php<br /> chcon system_u:object_r:httpd_sys_rw_content_t:s0 ${WP_ROOT}/wp-config.php<br /> <br /> # allow wordpress to manage .htaccess<br /> touch ${WP_ROOT}/.htaccess<br /> chgrp ${WP_GROUP} ${WP_ROOT}/.htaccess<br /> chmod 664 ${WP_ROOT}/.htaccess<br /> chcon system_u:object_r:httpd_sys_rw_content_t:s0 ${WP_ROOT}/.htaccess<br /> <br /> # allow wordpress to manage wp-content<br /> chmod -R 664 $WP_ROOT/wp-content;<br /> chcon -R system_u:object_r:httpd_sys_rw_content_t:s0 $WP_ROOT/wp-content;<br /> find ${WP_ROOT}/wp-content -type d -exec chmod -R 775 {} \;<br /> echo -e &quot;\nDoing it\n&quot;<br /> <br /> fi<br /> ```</div>

Busk