Dr. Mark Humphrys

School of Computing. Dublin City University.

Home      Blog      Teaching      Research      Contact

My big idea: Ancient Brain


CA114      CA170

CA668      CA669      Projects

Notes on Directory protections

    user      group      other
 [ ][ ][ ]  [ ][ ][ ]  [ ][ ][ ]

r - read (can do ls)
w - write
x - search (can access files given their name)

user bits

Note if turned off, user has power to turn them on any time.

[r][-][x] write-protect for safety
[r][w][x] normal

group/other bits

[r][w][x] shared writable directory
can create/delete files
[r][-][x] shared read-only directory
can do ls
If web dir is like this, users may be able to get a raw directory listing of the web files.
[-][-][x] shared read-only dir
can't do ls
can access file if know its name
can't explore without filenames

Example: web dir
can only browse named files
the names are in the links (can't do an ls to get them)
the site must advertise a starting point (a web page from which all other web pages can be found by following links alone)

[-][-][-] normal - hidden

Example of use in web directories

Inside mhtest15/public_html:
drwx---r-x    readabledir
drwx-----x    executabledir

.htaccess control

The behaviour of listing directory contents or not can be finely controlled with Options +Indexes (or Options -Indexes) in .htaccess files.

Minimum needed for Web directories

(HTTP requests come in as "other".)

ancientbrain.com      w2mind.org      humphrysfamilytree.com

On the Internet since 1987.

Wikipedia: Sometimes I link to Wikipedia. I have written something In defence of Wikipedia. It is often a useful starting point but you cannot trust it. Linking to it is like linking to a Google search. A starting point, not a destination. I automatically highlight in red all links to Wikipedia and Google search and other possibly-unreliable user-generated content.