-
-
Save roramirez/bd3b346d7aef51e9bfd5953d06706ff6 to your computer and use it in GitHub Desktop.
Fix wordpress file permissions
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # This script configures WordPress file permissions based on recommendations | |
| # from http://codex.wordpress.org/Hardening_WordPress#File_permissions | |
| # | |
| # Author: Michael Conigliaro <mike [at] conigliaro [dot] org> | |
| # | |
| WP_OWNER=www-data # <-- wordpress owner | |
| WP_GROUP=www-data # <-- wordpress group | |
| WP_ROOT=$1 # <-- wordpress root directory | |
| WS_GROUP=www-data # <-- webserver group | |
| # reset to safe defaults | |
| find ${WP_ROOT} -exec chown ${WP_OWNER}:${WP_GROUP} {} \; | |
| find ${WP_ROOT} -type d -exec chmod 755 {} \; | |
| find ${WP_ROOT} -type f -exec chmod 644 {} \; | |
| # allow wordpress to manage wp-config.php (but prevent world access) | |
| chgrp ${WS_GROUP} ${WP_ROOT}/wp-config.php | |
| chmod 660 ${WP_ROOT}/wp-config.php | |
| # allow wordpress to manage wp-content | |
| find ${WP_ROOT}/wp-content -exec chgrp ${WS_GROUP} {} \; | |
| find ${WP_ROOT}/wp-content -type d -exec chmod 775 {} \; | |
| find ${WP_ROOT}/wp-content -type f -exec chmod 664 {} \; | |
| # Add some fixes for directory by .htaccess | |
| cat >> ${WP_ROOT}/wp-content/uploads/.htaccess <<- EOM | |
| <Files *.php> | |
| deny from all | |
| </files> | |
| EOM | |
| cat >> ${WP_ROOT}/wp-includes/.htaccess <<- EOM | |
| <Files *.php> | |
| deny from all | |
| </files> | |
| EOM | |
| cat >> ${WP_ROOT}/.htaccess <<- EOM | |
| <Files wp-config.php> | |
| order allow,deny | |
| deny from all | |
| </files> | |
| EOM |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment