Directory permissions question

I noticed in a default installation of Hestia, that permissions for items in the public_html folder are set to 644 (files) and (755) folders. Would it be “better” for this to be 640 and 750 to prevent users from seeing other user configuration files? I.e., if a hestia user knows the path to /home/user/web/example.com/public_html/wp-config.php then they would effectively have access to user credentials of another user’s WordPress database?

I’m not using Hestia in a “shared hosting” capacity; but curious if setting 640 and 750 respectively would disrupt current functionality?

By default users don’t have read permissions to other files

For example:

jaap@monitor:/home/eris$  cat /home/client/web/demo.website.be/public_html/wp-config.php
cat: /home/client/web/demo.website.be/public_html/wp-config.php: Permission denied

It has been arranged by setflac.

Only exception is the hestia “admin” user the can read other user files…

admin@monitor:/home/eris$  cat /home/client/web/demo.website.be/public_html/wp-config.php
<?php
/**
 * The base configuration for WordPress

As we run php under the user it should be also no issue even open base dir is way to open… For example /

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.