Advanced search  


cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.

Pages: [1]   Go Down

Author Topic: Locking down writable directories via Apache Server  (Read 1822 times)

0 Members and 1 Guest are viewing this topic.


  • Coppermine newbie
  • Offline Offline
  • Posts: 5
Locking down writable directories via Apache Server
« on: February 16, 2023, 10:05:24 pm »

Can I use the Apache Server directive "Require all denied" to lock down the writable directories "albums/", "include/", "logs/", and "plugins/" ???


  • Administrator
  • Coppermine addict
  • *****
  • Country: gb
  • Offline Offline
  • Gender: Male
  • Posts: 4871
Re: Locking down writable directories via Apache Server
« Reply #1 on: February 16, 2023, 11:18:59 pm »

As long as the script can still read and write to those directories it should no be a problem. Linux security is a bit of a dark art I am afraid. Last time I did a course in Red Hat there was an exam going on in the room next door. Grown men were in tears.
It is a mistake to think you can solve any major problems just with potatoes.
Pages: [1]   Go Up

Page created in 0.016 seconds with 20 queries.