Hi there,
I’m creating a CMS for a photographer in PHP. She wants to create and delete galleries, which means creating new directories and copying files on the server.
Whenever I create or copy a file or directory, by default its permissions are set to something like 0755 by default, but in order to delete directories and files I need their permissions to be set to 0777. My question is, are there any inherent security issue with doing this? Am I setting my self up for trouble down the road if some vagabond decides to start deleting my photographers galleries?
Many thanks,
Mike