Linux rights for ez template files..

« 
Previous topic
|
General
|
Next topic
 »
Author Message

K259

Monday 14 August 2006 7:14:42 am

Which rights are needed to have for my tpl's under design/x/override/templates/node/view/..
I want the site to be secure.

-rwxr-xr-x
or
-rwxr--r--

K

Kristof Coomans

Monday 14 August 2006 9:36:35 am

If you're not going to edit the template files from inside the admin interface, then only read rights are necessary.

independent eZ Publish developer and service provider | http://blog.coomanskristof.be | http://ezpedia.org

K259

Monday 14 August 2006 10:55:51 am

But this is really unsecure:

-rwxr-xr-x

?

Kristof Coomans

Tuesday 15 August 2006 1:13:31 am

If the user your webserver is running as, is also the owner of the template files, then it could be possible that a website visitor modifies/deletes them if there is an exploit in eZ publish which allows him/her to do so. But in normal circumstances, there's no security risk.

independent eZ Publish developer and service provider | http://blog.coomanskristof.be | http://ezpedia.org
Powered by eZ Publish™ CMS Open Source Web Content Management. Copyright © 1999-2014 eZ Systems AS (except where otherwise noted). All rights reserved.

eZ debug

Timing: Jan 18 2025 19:08:07
Script start
Timing: Jan 18 2025 19:08:07
Module start 'layout'
Timing: Jan 18 2025 19:08:07
Module start 'content'
Timing: Jan 18 2025 19:08:07
Module end 'content'
Timing: Jan 18 2025 19:08:07
Script end

Main resources:

Total runtime0.7287 sec
Peak memory usage4,096.0000 KB
Database Queries60

Timing points:

CheckpointStart (sec)Duration (sec)Memory at start (KB)Memory used (KB)
Script start 0.00000.0077 591.5391152.6250
Module start 'layout' 0.00770.0032 744.164139.4453
Module start 'content' 0.01090.7162 783.6094540.0938
Module end 'content' 0.72710.0016 1,323.703112.1563
Script end 0.7286  1,335.8594 

Time accumulators:

 Accumulator Duration (sec) Duration (%) Count Average (sec)
Ini load
Load cache0.00370.5056160.0002
Check MTime0.00140.1878160.0001
Mysql Total
Database connection0.00200.275710.0020
Mysqli_queries0.669191.8266600.0112
Looping result0.00070.0943580.0000
Template Total0.691694.920.3458
Template load0.00270.370520.0014
Template processing0.688994.533920.3444
Template load and register function0.00030.037010.0003
states
state_id_array0.00130.180910.0013
state_identifier_array0.00140.188320.0007
Override
Cache load0.00220.2969190.0001
Sytem overhead
Fetch class attribute can translate value0.00130.171820.0006
Fetch class attribute name0.00120.161050.0002
XML
Image XML parsing0.00080.107320.0004
class_abstraction
Instantiating content class attribute0.00000.001960.0000
General
dbfile0.00080.1148160.0001
String conversion0.00000.001140.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

UsageRequested templateTemplateTemplate loadedEditOverride
1node/view/full.tplfull/forum_topic.tplextension/sevenx/design/simple/override/templates/full/forum_topic.tplEdit templateOverride template
4content/datatype/view/ezxmltext.tpl<No override>extension/community_design/design/suncana/templates/content/datatype/view/ezxmltext.tplEdit templateOverride template
2content/datatype/view/ezxmltags/line.tpl<No override>design/standard/templates/content/datatype/view/ezxmltags/line.tplEdit templateOverride template
5content/datatype/view/ezxmltags/paragraph.tpl<No override>extension/ezwebin/design/ezwebin/templates/content/datatype/view/ezxmltags/paragraph.tplEdit templateOverride template
2content/datatype/view/ezimage.tpl<No override>extension/sevenx/design/simple/templates/content/datatype/view/ezimage.tplEdit templateOverride template
1print_pagelayout.tpl<No override>extension/community/design/community/templates/print_pagelayout.tplEdit templateOverride template
 Number of times templates used: 15
 Number of unique templates used: 6

Time used to render debug report: 0.0002 secs